Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2013-0430 (GCVE-0-2013-0430)
Vulnerability from cvelistv5
Published
2013-02-02 00:00
Modified
2024-08-06 14:25
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T14:25:10.236Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "57722",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/57722"
},
{
"name": "oval:org.mitre.oval:def:16600",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600"
},
{
"name": "TA13-032A",
"tags": [
"third-party-advisory",
"x_refsource_CERT",
"x_transferred"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html"
},
{
"name": "RHSA-2013:0236",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"name": "VU#858729",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"name": "RHSA-2013:0237",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"name": "HPSBMU02874",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"name": "SSRT101184",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2013-02-01T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-09-18T12:57:01",
"orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"shortName": "oracle"
},
"references": [
{
"name": "57722",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/57722"
},
{
"name": "oval:org.mitre.oval:def:16600",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600"
},
{
"name": "TA13-032A",
"tags": [
"third-party-advisory",
"x_refsource_CERT"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html"
},
{
"name": "RHSA-2013:0236",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"name": "VU#858729",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"name": "RHSA-2013:0237",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"name": "HPSBMU02874",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"name": "SSRT101184",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2013-0430",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "57722",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/57722"
},
{
"name": "oval:org.mitre.oval:def:16600",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600"
},
{
"name": "TA13-032A",
"refsource": "CERT",
"url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html"
},
{
"name": "RHSA-2013:0236",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"name": "VU#858729",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"name": "RHSA-2013:0237",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"name": "HPSBMU02874",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"name": "SSRT101184",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"assignerShortName": "oracle",
"cveId": "CVE-2013-0430",
"datePublished": "2013-02-02T00:00:00",
"dateReserved": "2012-12-07T00:00:00",
"dateUpdated": "2024-08-06T14:25:10.236Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2013-0430\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2013-02-02T00:55:01.803\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 hasta Update 11 y v6 hasta Update 38, permite a usuarios locales afectar la confidencialiad, integridad y disponibilidad mediante vectores desconocidos relacionados con el proceso de instalaci\u00f3n de el cliente.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":6.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C27372B-A091-46D5-AE39-A44BBB1D9EE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4B153FD-E20B-4909-8B10-884E48F5B590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"F21933FB-A27C-4AF3-9811-2DE28484A5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2B20041-EB5D-4FA4-AC7D-C35E7878BCFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB106FA9-26CE-48C5-AEA5-FD1A5454AEE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5831D70B-3854-4CB8-B88D-40F1743DAEE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEB101C9-CA38-4421-BC0C-C1AD47AA2CC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA302DF3-ABBB-4262-B206-4C0F7B5B1E91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9A8EBCB-5E6A-42F0-8D07-F3A3D1C850F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CD8A54E-185B-4D34-82EF-C0C05739EC12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FFC7F0D-1F32-4235-8359-277CE41382DF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E44FC8AF-F76F-4A8E-8D03-4F8BCA8CB031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6152036D-6421-4AE4-9223-766FE07B5A44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE8B0935-6637-413D-B896-28E0ED7F2CEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"30B480BC-0886-4B19-B0A5-57B531077F40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D375CECB-405C-4E18-A7E8-9C5A2F97BD69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"52EEEA5A-E77C-43CF-A063-9D5C64EA1870\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"003746F6-DEF0-4D0F-AD97-9E335868E301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF830E0E-0169-4B6A-81FF-2E9FCD7D913B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BAE3670-0938-480A-8472-DFF0B3A0D0BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EC967FF-26A6-4498-BC09-EC23B2B75CBA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"02781457-4E40-46A9-A5F7-945232A8C2B1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF13B96D-1F80-4672-8DA3-F86F6D3BF070\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1A2D440-D966-41A6-955D-38B28DDE0FDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1C57774-AD93-4162-8E45-92B09139C808\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD7C4194-D34A-418F-9B00-5C6012844AAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF7D86B-1B4D-4E1F-9EF0-DA7E419D7E99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0B82FB1-0F0E-44F9-87AE-628517279E4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0A67640-2F4A-488A-9D8F-3FE1F4DA8DEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D60D98D-4363-44A0-AAB4-B61BA623EE21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"23CDA4F0-C32B-4B08-A377-7D4426C2F569\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E76476E-4120-46A9-90A8-A95FE89636CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A84689-0CED-404F-8DC3-708BEB37D2CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*\",\"matchCriteriaId\":\"738EC3E5-A4EB-47FE-9C9A-7C8E8C669765\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF56E0D9-612D-4215-9C76-560AE0661A05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA717604-4BB0-4968-B258-7C9F884016FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA71FCF4-580F-432D-AADC-65A2A92CEBC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBCD143C-057D-4F42-B487-46801E14ACF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"09027C19-D442-446F-B7A8-21DB6787CF43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A0FEC28-0707-4F42-9740-78F3D2D551EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3C5879A-A608-4230-9DC1-C27F0F48A13B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C71089A-BDDE-41FC-9DF9-9AEF4C2374DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DBB6B73-8D6B-41FF-BEE0-E0C7F5F1EB41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"12A3B254-8580-45DB-BDE4-5B5A29CBFFB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DB1DE6A-66AE-499B-AD92-9E6ACE474C6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"AADBB4F9-E43E-428B-9979-F47A15696C85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"49260B94-05DE-4B78-9068-6F5F6BFDD19E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4FDE9EB-08FE-436E-A265-30E83B15DB23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE409D5C-8F9F-4DE9-ACB7-0E0B813F6399\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7158D2C0-E9AC-4CD6-B777-EA7B7A181997\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"B08C075B-9FC0-4381-A9E4-FFF0362BD308\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"F587E635-3A15-4186-B6A1-F99BE0A56820\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"90EC6C13-4B37-48E5-8199-A702A944D5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"2528152C-E20A-4D97-931C-A5EC3CEAA06D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"A99DAB4C-272B-4C91-BC70-7729E1152590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"30DFC10A-A4D9-4F89-B17C-AB9260087D29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"272A5C44-18EC-41A9-8233-E9D4D0734EA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*\",\"matchCriteriaId\":\"81C2C04D-D4BA-4C87-9609-C53AA63BFF19\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"301E96A3-AD2F-48F3-9166-571BD6F9FAE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C9215D9-DB64-4CEE-85E6-E247035EFB09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"352509FE-54D9-4A59-98B7-96E5E98BC2CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3EC13D3-4CE7-459C-A7D7-7D38C1284720\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"8CDCD1B4-C5F3-4188-B05F-23922F7DE517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"1824DA2D-26D5-4595-8376-8E41AB8C5E52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"B72F78B7-10D1-49CF-AC4D-3B10921CB633\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"60D05860-9424-4727-B583-74A35BC9BDFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"F85DB431-FEA4-42E7-AC29-6B66174DCD9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB7E911C-C780-440A-ABFF-CCE09061BB4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"0381EE39-2F60-49FD-A63A-B9E81C9033CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AD75455-B7F0-4F42-98E7-CAA43787D606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BF0FD06-3953-49AB-A9AA-ACB6883E2D2E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*\",\"matchCriteriaId\":\"62823E8E-99CF-40DB-B43E-CBA4E9A2F916\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEA04B0D-D4E3-497D-9564-046B1CDA2342\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3A4FEC7-A4A0-4B5C-A56C-8F80AE19865E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"722A93D8-B5BC-42F3-92A2-E424F61269A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"775F2611-F11C-4B84-8F40-0D034B81BF18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"F20FDD9F-FF45-48BC-9207-54FB02E76071\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FA326F5-894A-4B01-BCA3-B126DA81CA59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"228AB7B4-4BA4-43D4-B562-D438884DB152\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFD5C688-2103-4D60-979E-D9BE69A989C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"21421215-F722-4207-A2E5-E2DF4B29859B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFB9EA23-0EF7-4582-A265-3F5AA9EC81B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C367B418-659E-4627-B1F1-1B1216C99055\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD5E6D4E-DDDD-4B45-B5E9-F8A916287AF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"7358492A-491C-491E-AEDF-63CB82619BAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3DACAAF-AFDC-4391-9E85-344F30937F76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"D98175BF-B084-4FA5-899D-9E80DC3923EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"820632CE-F8DF-47EE-B716-7530E60008B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA2BD0A3-7B2D-447B-ABAC-7B867B03B632\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"D54AB785-E9B7-47BD-B756-0C3A629D67DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9412098-0353-4F7B-9245-010557E6C651\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD30DAEB-4893-41CF-A455-B69C463B9337\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*\",\"matchCriteriaId\":\"21D6CE7E-A036-496C-8E08-A87F62B5290A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8F93BBE-1E8C-4EB3-BCC7-20AB2D813F98\"}]}]}],\"references\":[{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0236.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0237.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.kb.cert.org/vuls/id/858729\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/57722\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA13-032A.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"US Government Resource\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0236.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0237.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/858729\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/57722\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA13-032A.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorComment\":\"Per http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html \\r\\n\\r\\n\\\"Applies to installation process on client deployment of Java.\\\"\"}}"
}
}
gsd-2013-0430
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2013-0430",
"description": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"id": "GSD-2013-0430",
"references": [
"https://www.suse.com/security/cve/CVE-2013-0430.html",
"https://access.redhat.com/errata/RHSA-2013:0237",
"https://access.redhat.com/errata/RHSA-2013:0236"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2013-0430"
],
"details": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"id": "GSD-2013-0430",
"modified": "2023-12-13T01:22:14.873307Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2013-0430",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "57722",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/57722"
},
{
"name": "oval:org.mitre.oval:def:16600",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600"
},
{
"name": "TA13-032A",
"refsource": "CERT",
"url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html"
},
{
"name": "RHSA-2013:0236",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"name": "VU#858729",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"name": "RHSA-2013:0237",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"name": "HPSBMU02874",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"name": "SSRT101184",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2013-0430"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"name": "RHSA-2013:0237",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"name": "RHSA-2013:0236",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"name": "TA13-032A",
"refsource": "CERT",
"tags": [
"US Government Resource"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html"
},
{
"name": "VU#858729",
"refsource": "CERT-VN",
"tags": [
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"name": "HPSBMU02874",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"name": "57722",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/57722"
},
{
"name": "oval:org.mitre.oval:def:16600",
"refsource": "OVAL",
"tags": [],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2022-05-13T14:52Z",
"publishedDate": "2013-02-02T00:55Z"
}
}
}
rhsa-2013:0237
Vulnerability from csaf_redhat
Published
2013-02-04 23:51
Modified
2025-09-26 03:09
Summary
Red Hat Security Advisory: java-1.7.0-oracle security update
Notes
Topic
Updated java-1.7.0-oracle packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 7 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,
CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0431,
CVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437,
CVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443,
CVE-2013-0444, CVE-2013-0445, CVE-2013-0446, CVE-2013-0448, CVE-2013-0449,
CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,
CVE-2013-1479, CVE-2013-1480, CVE-2013-1489)
All users of java-1.7.0-oracle are advised to upgrade to these updated
packages, which provide Oracle Java 7 Update 13 and resolve these issues.
All running instances of Oracle Java must be restarted for the update to
take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0431,\nCVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437,\nCVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443,\nCVE-2013-0444, CVE-2013-0445, CVE-2013-0446, CVE-2013-0448, CVE-2013-0449,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1479, CVE-2013-1480, CVE-2013-1489)\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 13 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:0237",
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "906447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447"
},
{
"category": "external",
"summary": "906449",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906449"
},
{
"category": "external",
"summary": "906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "906932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906932"
},
{
"category": "external",
"summary": "906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "906934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906934"
},
{
"category": "external",
"summary": "906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "907190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907190"
},
{
"category": "external",
"summary": "907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "907218",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218"
},
{
"category": "external",
"summary": "907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "907222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907222"
},
{
"category": "external",
"summary": "907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0237.json"
}
],
"title": "Red Hat Security Advisory: java-1.7.0-oracle security update",
"tracking": {
"current_release_date": "2025-09-26T03:09:55+00:00",
"generator": {
"date": "2025-09-26T03:09:55+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.8"
}
},
"id": "RHSA-2013:0237",
"initial_release_date": "2013-02-04T23:51:00+00:00",
"revision_history": [
{
"date": "2013-02-04T23:51:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-02-04T23:53:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-26T03:09:55+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-1541",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906914"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-1541"
},
{
"category": "external",
"summary": "RHBZ#906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1541"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2012-3213",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907223"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3213"
},
{
"category": "external",
"summary": "RHBZ#907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3213"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)"
},
{
"cve": "CVE-2012-3342",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906917"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3342"
},
{
"category": "external",
"summary": "RHBZ#906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0351",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906923"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0351"
},
{
"category": "external",
"summary": "RHBZ#906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0351"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0409",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907226"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0409"
},
{
"category": "external",
"summary": "RHBZ#907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)"
},
{
"cve": "CVE-2013-0419",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906918"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0419"
},
{
"category": "external",
"summary": "RHBZ#906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0423",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906921"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0423"
},
{
"category": "external",
"summary": "RHBZ#906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0423"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0424",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906813"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0424"
},
{
"category": "external",
"summary": "RHBZ#906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0424"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)"
},
{
"cve": "CVE-2013-0425",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907344"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0425"
},
{
"category": "external",
"summary": "RHBZ#907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)"
},
{
"cve": "CVE-2013-0426",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907346"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0426"
},
{
"category": "external",
"summary": "RHBZ#907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0426"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)"
},
{
"cve": "CVE-2013-0427",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907455"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0427"
},
{
"category": "external",
"summary": "RHBZ#907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0427"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)"
},
{
"cve": "CVE-2013-0428",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907207"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0428"
},
{
"category": "external",
"summary": "RHBZ#907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0428"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)"
},
{
"cve": "CVE-2013-0429",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907460"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0429"
},
{
"category": "external",
"summary": "RHBZ#907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0429"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)"
},
{
"cve": "CVE-2013-0430",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906930"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0430"
},
{
"category": "external",
"summary": "RHBZ#906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0430"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.4,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)"
},
{
"cve": "CVE-2013-0431",
"discovery_date": "2013-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906447"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka \"Issue 52,\" a different vulnerability than CVE-2013-1490.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0431"
},
{
"category": "external",
"summary": "RHBZ#906447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0431",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0431"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2013-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2022-05-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)"
},
{
"cve": "CVE-2013-0432",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907219"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0432"
},
{
"category": "external",
"summary": "RHBZ#907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0432"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)"
},
{
"cve": "CVE-2013-0433",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907456"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0433"
},
{
"category": "external",
"summary": "RHBZ#907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0433"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)"
},
{
"cve": "CVE-2013-0434",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907453"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0434"
},
{
"category": "external",
"summary": "RHBZ#907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0434"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)"
},
{
"cve": "CVE-2013-0435",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906892"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0435"
},
{
"category": "external",
"summary": "RHBZ#906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0435"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)"
},
{
"cve": "CVE-2013-0437",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907222"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (2D)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0437"
},
{
"category": "external",
"summary": "RHBZ#907222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907222"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0437",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0437"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0437",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0437"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (2D)"
},
{
"cve": "CVE-2013-0438",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906935"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0438"
},
{
"category": "external",
"summary": "RHBZ#906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0440",
"discovery_date": "2012-07-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "859140"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0440"
},
{
"category": "external",
"summary": "RHBZ#859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)"
},
{
"cve": "CVE-2013-0441",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907458"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing serialization restriction (CORBA, 7201066)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0441"
},
{
"category": "external",
"summary": "RHBZ#907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing serialization restriction (CORBA, 7201066)"
},
{
"cve": "CVE-2013-0442",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906899"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0442"
},
{
"category": "external",
"summary": "RHBZ#906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0442"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)"
},
{
"cve": "CVE-2013-0443",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907340"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0443"
},
{
"category": "external",
"summary": "RHBZ#907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)"
},
{
"cve": "CVE-2013-0444",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907218"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient checks for cached results\" by the Java Beans MethodFinder, which might allow attackers to access methods that should only be accessible to privileged code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0444"
},
{
"category": "external",
"summary": "RHBZ#907218",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0444",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0444"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)"
},
{
"cve": "CVE-2013-0445",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906900"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0445"
},
{
"category": "external",
"summary": "RHBZ#906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0445"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)"
},
{
"cve": "CVE-2013-0446",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906916"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0446"
},
{
"category": "external",
"summary": "RHBZ#906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0446"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0448",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906934"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 allows remote attackers to affect integrity via unknown vectors related to Libraries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0448"
},
{
"category": "external",
"summary": "RHBZ#906934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906934"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0448",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0448"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0448",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0448"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (Libraries)"
},
{
"cve": "CVE-2013-0449",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906932"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0449"
},
{
"category": "external",
"summary": "RHBZ#906932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906932"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0449",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0449"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0450",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906911"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0450"
},
{
"category": "external",
"summary": "RHBZ#906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)"
},
{
"cve": "CVE-2013-1473",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906933"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1473"
},
{
"category": "external",
"summary": "RHBZ#906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-1475",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "860652"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1475"
},
{
"category": "external",
"summary": "RHBZ#860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)"
},
{
"cve": "CVE-2013-1476",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907457"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1476"
},
{
"category": "external",
"summary": "RHBZ#907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1476"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)"
},
{
"cve": "CVE-2013-1478",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906894"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1478"
},
{
"category": "external",
"summary": "RHBZ#906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1478"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)"
},
{
"cve": "CVE-2013-1479",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907190"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1479"
},
{
"category": "external",
"summary": "RHBZ#907190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907190"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1479",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1479"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1479",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1479"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JavaFX)"
},
{
"cve": "CVE-2013-1480",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906904"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1480"
},
{
"category": "external",
"summary": "RHBZ#906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1480"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)"
},
{
"cve": "CVE-2013-1489",
"discovery_date": "2013-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906449"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 10 and Update 11, when running on Windows using Internet Explorer, Firefox, Opera, and Google Chrome, allows remote attackers to bypass the \"Very High\" security level of the Java Control Panel and execute unsigned Java code without prompting the user via unknown vectors, aka \"Issue 53\" and the \"Java Security Slider\" vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1489"
},
{
"category": "external",
"summary": "RHBZ#906449",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906449"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1489",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1489"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1489",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1489"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 0.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)"
}
]
}
rhsa-2013:0236
Vulnerability from csaf_redhat
Published
2013-02-04 23:50
Modified
2025-09-26 03:09
Summary
Red Hat Security Advisory: java-1.6.0-sun security update
Notes
Topic
Updated java-1.6.0-sun packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 6 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,
CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,
CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,
CVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,
CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,
CVE-2013-1480, CVE-2013-1481)
All users of java-1.6.0-sun are advised to upgrade to these updated
packages, which provide Oracle Java 6 Update 39. All running instances of
Oracle Java must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated java-1.6.0-sun packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 6 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,\nCVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,\nCVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1480, CVE-2013-1481)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide Oracle Java 6 Update 39. All running instances of\nOracle Java must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:0236",
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "907224",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224"
},
{
"category": "external",
"summary": "907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0236.json"
}
],
"title": "Red Hat Security Advisory: java-1.6.0-sun security update",
"tracking": {
"current_release_date": "2025-09-26T03:09:54+00:00",
"generator": {
"date": "2025-09-26T03:09:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.8"
}
},
"id": "RHSA-2013:0236",
"initial_release_date": "2013-02-04T23:50:00+00:00",
"revision_history": [
{
"date": "2013-02-04T23:50:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-02-04T23:53:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-26T03:09:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-1541",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906914"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-1541"
},
{
"category": "external",
"summary": "RHBZ#906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1541"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2012-3213",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907223"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3213"
},
{
"category": "external",
"summary": "RHBZ#907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3213"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)"
},
{
"cve": "CVE-2012-3342",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906917"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3342"
},
{
"category": "external",
"summary": "RHBZ#906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0351",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906923"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0351"
},
{
"category": "external",
"summary": "RHBZ#906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0351"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0409",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907226"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0409"
},
{
"category": "external",
"summary": "RHBZ#907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)"
},
{
"cve": "CVE-2013-0419",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906918"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0419"
},
{
"category": "external",
"summary": "RHBZ#906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0423",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906921"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0423"
},
{
"category": "external",
"summary": "RHBZ#906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0423"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0424",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906813"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0424"
},
{
"category": "external",
"summary": "RHBZ#906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0424"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)"
},
{
"cve": "CVE-2013-0425",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907344"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0425"
},
{
"category": "external",
"summary": "RHBZ#907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)"
},
{
"cve": "CVE-2013-0426",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907346"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0426"
},
{
"category": "external",
"summary": "RHBZ#907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0426"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)"
},
{
"cve": "CVE-2013-0427",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907455"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0427"
},
{
"category": "external",
"summary": "RHBZ#907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0427"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)"
},
{
"cve": "CVE-2013-0428",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907207"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0428"
},
{
"category": "external",
"summary": "RHBZ#907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0428"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)"
},
{
"cve": "CVE-2013-0429",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907460"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0429"
},
{
"category": "external",
"summary": "RHBZ#907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0429"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)"
},
{
"cve": "CVE-2013-0430",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906930"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0430"
},
{
"category": "external",
"summary": "RHBZ#906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0430"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.4,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)"
},
{
"cve": "CVE-2013-0432",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907219"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0432"
},
{
"category": "external",
"summary": "RHBZ#907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0432"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)"
},
{
"cve": "CVE-2013-0433",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907456"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0433"
},
{
"category": "external",
"summary": "RHBZ#907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0433"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)"
},
{
"cve": "CVE-2013-0434",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907453"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0434"
},
{
"category": "external",
"summary": "RHBZ#907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0434"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)"
},
{
"cve": "CVE-2013-0435",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906892"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0435"
},
{
"category": "external",
"summary": "RHBZ#906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0435"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)"
},
{
"cve": "CVE-2013-0438",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906935"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0438"
},
{
"category": "external",
"summary": "RHBZ#906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0440",
"discovery_date": "2012-07-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "859140"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0440"
},
{
"category": "external",
"summary": "RHBZ#859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)"
},
{
"cve": "CVE-2013-0441",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907458"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing serialization restriction (CORBA, 7201066)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0441"
},
{
"category": "external",
"summary": "RHBZ#907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing serialization restriction (CORBA, 7201066)"
},
{
"cve": "CVE-2013-0442",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906899"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0442"
},
{
"category": "external",
"summary": "RHBZ#906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0442"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)"
},
{
"cve": "CVE-2013-0443",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907340"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0443"
},
{
"category": "external",
"summary": "RHBZ#907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)"
},
{
"cve": "CVE-2013-0445",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906900"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0445"
},
{
"category": "external",
"summary": "RHBZ#906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0445"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)"
},
{
"cve": "CVE-2013-0446",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906916"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0446"
},
{
"category": "external",
"summary": "RHBZ#906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0446"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0450",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906911"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0450"
},
{
"category": "external",
"summary": "RHBZ#906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)"
},
{
"cve": "CVE-2013-1473",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906933"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1473"
},
{
"category": "external",
"summary": "RHBZ#906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-1475",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "860652"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1475"
},
{
"category": "external",
"summary": "RHBZ#860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)"
},
{
"cve": "CVE-2013-1476",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907457"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1476"
},
{
"category": "external",
"summary": "RHBZ#907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1476"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)"
},
{
"cve": "CVE-2013-1478",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906894"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1478"
},
{
"category": "external",
"summary": "RHBZ#906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1478"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)"
},
{
"cve": "CVE-2013-1480",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906904"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1480"
},
{
"category": "external",
"summary": "RHBZ#906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1480"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)"
},
{
"cve": "CVE-2013-1481",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907224"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 (Sound)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1481"
},
{
"category": "external",
"summary": "RHBZ#907224",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1481",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1481"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 (Sound)"
}
]
}
rhsa-2013_0236
Vulnerability from csaf_redhat
Published
2013-02-04 23:50
Modified
2024-12-08 10:36
Summary
Red Hat Security Advisory: java-1.6.0-sun security update
Notes
Topic
Updated java-1.6.0-sun packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 6 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,
CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,
CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,
CVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,
CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,
CVE-2013-1480, CVE-2013-1481)
All users of java-1.6.0-sun are advised to upgrade to these updated
packages, which provide Oracle Java 6 Update 39. All running instances of
Oracle Java must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated java-1.6.0-sun packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 6 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,\nCVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,\nCVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1480, CVE-2013-1481)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide Oracle Java 6 Update 39. All running instances of\nOracle Java must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:0236",
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "907224",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224"
},
{
"category": "external",
"summary": "907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0236.json"
}
],
"title": "Red Hat Security Advisory: java-1.6.0-sun security update",
"tracking": {
"current_release_date": "2024-12-08T10:36:32+00:00",
"generator": {
"date": "2024-12-08T10:36:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2013:0236",
"initial_release_date": "2013-02-04T23:50:00+00:00",
"revision_history": [
{
"date": "2013-02-04T23:50:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-02-04T23:53:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-08T10:36:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-1541",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906914"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-1541"
},
{
"category": "external",
"summary": "RHBZ#906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1541"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2012-3213",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907223"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3213"
},
{
"category": "external",
"summary": "RHBZ#907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3213"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)"
},
{
"cve": "CVE-2012-3342",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906917"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3342"
},
{
"category": "external",
"summary": "RHBZ#906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0351",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906923"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0351"
},
{
"category": "external",
"summary": "RHBZ#906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0351"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0409",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907226"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0409"
},
{
"category": "external",
"summary": "RHBZ#907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)"
},
{
"cve": "CVE-2013-0419",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906918"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0419"
},
{
"category": "external",
"summary": "RHBZ#906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0423",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906921"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0423"
},
{
"category": "external",
"summary": "RHBZ#906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0423"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0424",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906813"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0424"
},
{
"category": "external",
"summary": "RHBZ#906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0424"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)"
},
{
"cve": "CVE-2013-0425",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907344"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0425"
},
{
"category": "external",
"summary": "RHBZ#907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)"
},
{
"cve": "CVE-2013-0426",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907346"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0426"
},
{
"category": "external",
"summary": "RHBZ#907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0426"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)"
},
{
"cve": "CVE-2013-0427",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907455"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0427"
},
{
"category": "external",
"summary": "RHBZ#907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0427"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)"
},
{
"cve": "CVE-2013-0428",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907207"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0428"
},
{
"category": "external",
"summary": "RHBZ#907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0428"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)"
},
{
"cve": "CVE-2013-0429",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907460"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0429"
},
{
"category": "external",
"summary": "RHBZ#907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0429"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)"
},
{
"cve": "CVE-2013-0430",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906930"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0430"
},
{
"category": "external",
"summary": "RHBZ#906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0430"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.4,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)"
},
{
"cve": "CVE-2013-0432",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907219"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0432"
},
{
"category": "external",
"summary": "RHBZ#907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0432"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)"
},
{
"cve": "CVE-2013-0433",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907456"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0433"
},
{
"category": "external",
"summary": "RHBZ#907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0433"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)"
},
{
"cve": "CVE-2013-0434",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907453"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0434"
},
{
"category": "external",
"summary": "RHBZ#907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0434"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)"
},
{
"cve": "CVE-2013-0435",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906892"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0435"
},
{
"category": "external",
"summary": "RHBZ#906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0435"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)"
},
{
"cve": "CVE-2013-0438",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906935"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0438"
},
{
"category": "external",
"summary": "RHBZ#906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0440",
"discovery_date": "2012-07-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "859140"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0440"
},
{
"category": "external",
"summary": "RHBZ#859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)"
},
{
"cve": "CVE-2013-0441",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907458"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing serialization restriction (CORBA, 7201066)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0441"
},
{
"category": "external",
"summary": "RHBZ#907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing serialization restriction (CORBA, 7201066)"
},
{
"cve": "CVE-2013-0442",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906899"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0442"
},
{
"category": "external",
"summary": "RHBZ#906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0442"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)"
},
{
"cve": "CVE-2013-0443",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907340"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0443"
},
{
"category": "external",
"summary": "RHBZ#907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)"
},
{
"cve": "CVE-2013-0445",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906900"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0445"
},
{
"category": "external",
"summary": "RHBZ#906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0445"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)"
},
{
"cve": "CVE-2013-0446",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906916"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0446"
},
{
"category": "external",
"summary": "RHBZ#906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0446"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0450",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906911"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0450"
},
{
"category": "external",
"summary": "RHBZ#906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)"
},
{
"cve": "CVE-2013-1473",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906933"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1473"
},
{
"category": "external",
"summary": "RHBZ#906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-1475",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "860652"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1475"
},
{
"category": "external",
"summary": "RHBZ#860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)"
},
{
"cve": "CVE-2013-1476",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907457"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1476"
},
{
"category": "external",
"summary": "RHBZ#907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1476"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)"
},
{
"cve": "CVE-2013-1478",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906894"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1478"
},
{
"category": "external",
"summary": "RHBZ#906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1478"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)"
},
{
"cve": "CVE-2013-1480",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906904"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1480"
},
{
"category": "external",
"summary": "RHBZ#906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1480"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)"
},
{
"cve": "CVE-2013-1481",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907224"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 (Sound)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1481"
},
{
"category": "external",
"summary": "RHBZ#907224",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1481",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1481"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 (Sound)"
}
]
}
RHSA-2013:0237
Vulnerability from csaf_redhat
Published
2013-02-04 23:51
Modified
2025-09-26 03:09
Summary
Red Hat Security Advisory: java-1.7.0-oracle security update
Notes
Topic
Updated java-1.7.0-oracle packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 7 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,
CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0431,
CVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437,
CVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443,
CVE-2013-0444, CVE-2013-0445, CVE-2013-0446, CVE-2013-0448, CVE-2013-0449,
CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,
CVE-2013-1479, CVE-2013-1480, CVE-2013-1489)
All users of java-1.7.0-oracle are advised to upgrade to these updated
packages, which provide Oracle Java 7 Update 13 and resolve these issues.
All running instances of Oracle Java must be restarted for the update to
take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0431,\nCVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437,\nCVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443,\nCVE-2013-0444, CVE-2013-0445, CVE-2013-0446, CVE-2013-0448, CVE-2013-0449,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1479, CVE-2013-1480, CVE-2013-1489)\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 13 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:0237",
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "906447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447"
},
{
"category": "external",
"summary": "906449",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906449"
},
{
"category": "external",
"summary": "906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "906932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906932"
},
{
"category": "external",
"summary": "906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "906934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906934"
},
{
"category": "external",
"summary": "906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "907190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907190"
},
{
"category": "external",
"summary": "907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "907218",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218"
},
{
"category": "external",
"summary": "907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "907222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907222"
},
{
"category": "external",
"summary": "907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0237.json"
}
],
"title": "Red Hat Security Advisory: java-1.7.0-oracle security update",
"tracking": {
"current_release_date": "2025-09-26T03:09:55+00:00",
"generator": {
"date": "2025-09-26T03:09:55+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.8"
}
},
"id": "RHSA-2013:0237",
"initial_release_date": "2013-02-04T23:51:00+00:00",
"revision_history": [
{
"date": "2013-02-04T23:51:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-02-04T23:53:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-26T03:09:55+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-1541",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906914"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-1541"
},
{
"category": "external",
"summary": "RHBZ#906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1541"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2012-3213",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907223"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3213"
},
{
"category": "external",
"summary": "RHBZ#907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3213"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)"
},
{
"cve": "CVE-2012-3342",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906917"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3342"
},
{
"category": "external",
"summary": "RHBZ#906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0351",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906923"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0351"
},
{
"category": "external",
"summary": "RHBZ#906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0351"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0409",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907226"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0409"
},
{
"category": "external",
"summary": "RHBZ#907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)"
},
{
"cve": "CVE-2013-0419",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906918"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0419"
},
{
"category": "external",
"summary": "RHBZ#906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0423",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906921"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0423"
},
{
"category": "external",
"summary": "RHBZ#906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0423"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0424",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906813"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0424"
},
{
"category": "external",
"summary": "RHBZ#906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0424"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)"
},
{
"cve": "CVE-2013-0425",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907344"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0425"
},
{
"category": "external",
"summary": "RHBZ#907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)"
},
{
"cve": "CVE-2013-0426",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907346"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0426"
},
{
"category": "external",
"summary": "RHBZ#907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0426"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)"
},
{
"cve": "CVE-2013-0427",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907455"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0427"
},
{
"category": "external",
"summary": "RHBZ#907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0427"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)"
},
{
"cve": "CVE-2013-0428",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907207"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0428"
},
{
"category": "external",
"summary": "RHBZ#907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0428"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)"
},
{
"cve": "CVE-2013-0429",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907460"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0429"
},
{
"category": "external",
"summary": "RHBZ#907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0429"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)"
},
{
"cve": "CVE-2013-0430",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906930"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0430"
},
{
"category": "external",
"summary": "RHBZ#906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0430"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.4,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)"
},
{
"cve": "CVE-2013-0431",
"discovery_date": "2013-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906447"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka \"Issue 52,\" a different vulnerability than CVE-2013-1490.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0431"
},
{
"category": "external",
"summary": "RHBZ#906447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0431",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0431"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2013-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2022-05-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)"
},
{
"cve": "CVE-2013-0432",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907219"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0432"
},
{
"category": "external",
"summary": "RHBZ#907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0432"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)"
},
{
"cve": "CVE-2013-0433",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907456"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0433"
},
{
"category": "external",
"summary": "RHBZ#907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0433"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)"
},
{
"cve": "CVE-2013-0434",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907453"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0434"
},
{
"category": "external",
"summary": "RHBZ#907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0434"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)"
},
{
"cve": "CVE-2013-0435",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906892"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0435"
},
{
"category": "external",
"summary": "RHBZ#906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0435"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)"
},
{
"cve": "CVE-2013-0437",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907222"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (2D)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0437"
},
{
"category": "external",
"summary": "RHBZ#907222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907222"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0437",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0437"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0437",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0437"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (2D)"
},
{
"cve": "CVE-2013-0438",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906935"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0438"
},
{
"category": "external",
"summary": "RHBZ#906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0440",
"discovery_date": "2012-07-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "859140"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0440"
},
{
"category": "external",
"summary": "RHBZ#859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)"
},
{
"cve": "CVE-2013-0441",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907458"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing serialization restriction (CORBA, 7201066)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0441"
},
{
"category": "external",
"summary": "RHBZ#907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing serialization restriction (CORBA, 7201066)"
},
{
"cve": "CVE-2013-0442",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906899"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0442"
},
{
"category": "external",
"summary": "RHBZ#906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0442"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)"
},
{
"cve": "CVE-2013-0443",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907340"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0443"
},
{
"category": "external",
"summary": "RHBZ#907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)"
},
{
"cve": "CVE-2013-0444",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907218"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient checks for cached results\" by the Java Beans MethodFinder, which might allow attackers to access methods that should only be accessible to privileged code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0444"
},
{
"category": "external",
"summary": "RHBZ#907218",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0444",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0444"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)"
},
{
"cve": "CVE-2013-0445",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906900"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0445"
},
{
"category": "external",
"summary": "RHBZ#906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0445"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)"
},
{
"cve": "CVE-2013-0446",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906916"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0446"
},
{
"category": "external",
"summary": "RHBZ#906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0446"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0448",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906934"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 allows remote attackers to affect integrity via unknown vectors related to Libraries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0448"
},
{
"category": "external",
"summary": "RHBZ#906934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906934"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0448",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0448"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0448",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0448"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (Libraries)"
},
{
"cve": "CVE-2013-0449",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906932"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0449"
},
{
"category": "external",
"summary": "RHBZ#906932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906932"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0449",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0449"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0450",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906911"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0450"
},
{
"category": "external",
"summary": "RHBZ#906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)"
},
{
"cve": "CVE-2013-1473",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906933"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1473"
},
{
"category": "external",
"summary": "RHBZ#906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-1475",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "860652"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1475"
},
{
"category": "external",
"summary": "RHBZ#860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)"
},
{
"cve": "CVE-2013-1476",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907457"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1476"
},
{
"category": "external",
"summary": "RHBZ#907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1476"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)"
},
{
"cve": "CVE-2013-1478",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906894"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1478"
},
{
"category": "external",
"summary": "RHBZ#906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1478"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)"
},
{
"cve": "CVE-2013-1479",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907190"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1479"
},
{
"category": "external",
"summary": "RHBZ#907190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907190"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1479",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1479"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1479",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1479"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JavaFX)"
},
{
"cve": "CVE-2013-1480",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906904"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1480"
},
{
"category": "external",
"summary": "RHBZ#906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1480"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)"
},
{
"cve": "CVE-2013-1489",
"discovery_date": "2013-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906449"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 10 and Update 11, when running on Windows using Internet Explorer, Firefox, Opera, and Google Chrome, allows remote attackers to bypass the \"Very High\" security level of the Java Control Panel and execute unsigned Java code without prompting the user via unknown vectors, aka \"Issue 53\" and the \"Java Security Slider\" vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1489"
},
{
"category": "external",
"summary": "RHBZ#906449",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906449"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1489",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1489"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1489",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1489"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 0.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)"
}
]
}
rhsa-2013_0237
Vulnerability from csaf_redhat
Published
2013-02-04 23:51
Modified
2024-12-08 10:36
Summary
Red Hat Security Advisory: java-1.7.0-oracle security update
Notes
Topic
Updated java-1.7.0-oracle packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 7 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,
CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0431,
CVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437,
CVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443,
CVE-2013-0444, CVE-2013-0445, CVE-2013-0446, CVE-2013-0448, CVE-2013-0449,
CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,
CVE-2013-1479, CVE-2013-1480, CVE-2013-1489)
All users of java-1.7.0-oracle are advised to upgrade to these updated
packages, which provide Oracle Java 7 Update 13 and resolve these issues.
All running instances of Oracle Java must be restarted for the update to
take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0431,\nCVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437,\nCVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443,\nCVE-2013-0444, CVE-2013-0445, CVE-2013-0446, CVE-2013-0448, CVE-2013-0449,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1479, CVE-2013-1480, CVE-2013-1489)\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 13 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:0237",
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "906447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447"
},
{
"category": "external",
"summary": "906449",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906449"
},
{
"category": "external",
"summary": "906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "906932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906932"
},
{
"category": "external",
"summary": "906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "906934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906934"
},
{
"category": "external",
"summary": "906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "907190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907190"
},
{
"category": "external",
"summary": "907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "907218",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218"
},
{
"category": "external",
"summary": "907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "907222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907222"
},
{
"category": "external",
"summary": "907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0237.json"
}
],
"title": "Red Hat Security Advisory: java-1.7.0-oracle security update",
"tracking": {
"current_release_date": "2024-12-08T10:36:37+00:00",
"generator": {
"date": "2024-12-08T10:36:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2013:0237",
"initial_release_date": "2013-02-04T23:51:00+00:00",
"revision_history": [
{
"date": "2013-02-04T23:51:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-02-04T23:53:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-08T10:36:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-1541",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906914"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-1541"
},
{
"category": "external",
"summary": "RHBZ#906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1541"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2012-3213",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907223"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3213"
},
{
"category": "external",
"summary": "RHBZ#907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3213"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)"
},
{
"cve": "CVE-2012-3342",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906917"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3342"
},
{
"category": "external",
"summary": "RHBZ#906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0351",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906923"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0351"
},
{
"category": "external",
"summary": "RHBZ#906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0351"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0409",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907226"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0409"
},
{
"category": "external",
"summary": "RHBZ#907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)"
},
{
"cve": "CVE-2013-0419",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906918"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0419"
},
{
"category": "external",
"summary": "RHBZ#906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0423",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906921"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0423"
},
{
"category": "external",
"summary": "RHBZ#906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0423"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0424",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906813"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0424"
},
{
"category": "external",
"summary": "RHBZ#906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0424"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)"
},
{
"cve": "CVE-2013-0425",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907344"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0425"
},
{
"category": "external",
"summary": "RHBZ#907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)"
},
{
"cve": "CVE-2013-0426",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907346"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0426"
},
{
"category": "external",
"summary": "RHBZ#907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0426"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)"
},
{
"cve": "CVE-2013-0427",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907455"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0427"
},
{
"category": "external",
"summary": "RHBZ#907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0427"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)"
},
{
"cve": "CVE-2013-0428",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907207"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0428"
},
{
"category": "external",
"summary": "RHBZ#907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0428"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)"
},
{
"cve": "CVE-2013-0429",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907460"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0429"
},
{
"category": "external",
"summary": "RHBZ#907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0429"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)"
},
{
"cve": "CVE-2013-0430",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906930"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0430"
},
{
"category": "external",
"summary": "RHBZ#906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0430"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.4,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)"
},
{
"cve": "CVE-2013-0431",
"discovery_date": "2013-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906447"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka \"Issue 52,\" a different vulnerability than CVE-2013-1490.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0431"
},
{
"category": "external",
"summary": "RHBZ#906447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0431",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0431"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2013-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2022-05-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)"
},
{
"cve": "CVE-2013-0432",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907219"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0432"
},
{
"category": "external",
"summary": "RHBZ#907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0432"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)"
},
{
"cve": "CVE-2013-0433",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907456"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0433"
},
{
"category": "external",
"summary": "RHBZ#907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0433"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)"
},
{
"cve": "CVE-2013-0434",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907453"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0434"
},
{
"category": "external",
"summary": "RHBZ#907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0434"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)"
},
{
"cve": "CVE-2013-0435",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906892"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0435"
},
{
"category": "external",
"summary": "RHBZ#906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0435"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)"
},
{
"cve": "CVE-2013-0437",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907222"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (2D)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0437"
},
{
"category": "external",
"summary": "RHBZ#907222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907222"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0437",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0437"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0437",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0437"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (2D)"
},
{
"cve": "CVE-2013-0438",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906935"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0438"
},
{
"category": "external",
"summary": "RHBZ#906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0440",
"discovery_date": "2012-07-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "859140"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0440"
},
{
"category": "external",
"summary": "RHBZ#859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)"
},
{
"cve": "CVE-2013-0441",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907458"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing serialization restriction (CORBA, 7201066)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0441"
},
{
"category": "external",
"summary": "RHBZ#907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing serialization restriction (CORBA, 7201066)"
},
{
"cve": "CVE-2013-0442",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906899"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0442"
},
{
"category": "external",
"summary": "RHBZ#906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0442"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)"
},
{
"cve": "CVE-2013-0443",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907340"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0443"
},
{
"category": "external",
"summary": "RHBZ#907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)"
},
{
"cve": "CVE-2013-0444",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907218"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient checks for cached results\" by the Java Beans MethodFinder, which might allow attackers to access methods that should only be accessible to privileged code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0444"
},
{
"category": "external",
"summary": "RHBZ#907218",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0444",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0444"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)"
},
{
"cve": "CVE-2013-0445",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906900"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0445"
},
{
"category": "external",
"summary": "RHBZ#906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0445"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)"
},
{
"cve": "CVE-2013-0446",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906916"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0446"
},
{
"category": "external",
"summary": "RHBZ#906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0446"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0448",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906934"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 allows remote attackers to affect integrity via unknown vectors related to Libraries.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0448"
},
{
"category": "external",
"summary": "RHBZ#906934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906934"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0448",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0448"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0448",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0448"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (Libraries)"
},
{
"cve": "CVE-2013-0449",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906932"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0449"
},
{
"category": "external",
"summary": "RHBZ#906932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906932"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0449",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0449"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0450",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906911"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0450"
},
{
"category": "external",
"summary": "RHBZ#906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)"
},
{
"cve": "CVE-2013-1473",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906933"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1473"
},
{
"category": "external",
"summary": "RHBZ#906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-1475",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "860652"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1475"
},
{
"category": "external",
"summary": "RHBZ#860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)"
},
{
"cve": "CVE-2013-1476",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907457"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1476"
},
{
"category": "external",
"summary": "RHBZ#907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1476"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)"
},
{
"cve": "CVE-2013-1478",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906894"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1478"
},
{
"category": "external",
"summary": "RHBZ#906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1478"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)"
},
{
"cve": "CVE-2013-1479",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907190"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JavaFX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1479"
},
{
"category": "external",
"summary": "RHBZ#907190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907190"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1479",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1479"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1479",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1479"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JavaFX)"
},
{
"cve": "CVE-2013-1480",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906904"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1480"
},
{
"category": "external",
"summary": "RHBZ#906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1480"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)"
},
{
"cve": "CVE-2013-1489",
"discovery_date": "2013-01-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906449"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 10 and Update 11, when running on Windows using Internet Explorer, Firefox, Opera, and Google Chrome, allows remote attackers to bypass the \"Very High\" security level of the Java Control Panel and execute unsigned Java code without prompting the user via unknown vectors, aka \"Issue 53\" and the \"Java Security Slider\" vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1489"
},
{
"category": "external",
"summary": "RHBZ#906449",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906449"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1489",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1489"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1489",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1489"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:51:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0237"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 0.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)"
}
]
}
RHSA-2013:0236
Vulnerability from csaf_redhat
Published
2013-02-04 23:50
Modified
2025-09-26 03:09
Summary
Red Hat Security Advisory: java-1.6.0-sun security update
Notes
Topic
Updated java-1.6.0-sun packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 6 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,
CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,
CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,
CVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,
CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,
CVE-2013-1480, CVE-2013-1481)
All users of java-1.6.0-sun are advised to upgrade to these updated
packages, which provide Oracle Java 6 Update 39. All running instances of
Oracle Java must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated java-1.6.0-sun packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 6 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,\nCVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,\nCVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1480, CVE-2013-1481)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide Oracle Java 6 Update 39. All running instances of\nOracle Java must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:0236",
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"category": "external",
"summary": "859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "907224",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224"
},
{
"category": "external",
"summary": "907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0236.json"
}
],
"title": "Red Hat Security Advisory: java-1.6.0-sun security update",
"tracking": {
"current_release_date": "2025-09-26T03:09:54+00:00",
"generator": {
"date": "2025-09-26T03:09:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.8"
}
},
"id": "RHSA-2013:0236",
"initial_release_date": "2013-02-04T23:50:00+00:00",
"revision_history": [
{
"date": "2013-02-04T23:50:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-02-04T23:53:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-26T03:09:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
},
"product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.3.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-1541",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906914"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-1541"
},
{
"category": "external",
"summary": "RHBZ#906914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1541"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2012-3213",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907223"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3213"
},
{
"category": "external",
"summary": "RHBZ#907223",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3213"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)"
},
{
"cve": "CVE-2012-3342",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906917"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-3342"
},
{
"category": "external",
"summary": "RHBZ#906917",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0351",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906923"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0351"
},
{
"category": "external",
"summary": "RHBZ#906923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0351"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0409",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907226"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0409"
},
{
"category": "external",
"summary": "RHBZ#907226",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)"
},
{
"cve": "CVE-2013-0419",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906918"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0419"
},
{
"category": "external",
"summary": "RHBZ#906918",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0423",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906921"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0423"
},
{
"category": "external",
"summary": "RHBZ#906921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0423"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0424",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906813"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0424"
},
{
"category": "external",
"summary": "RHBZ#906813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0424"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)"
},
{
"cve": "CVE-2013-0425",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907344"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0425"
},
{
"category": "external",
"summary": "RHBZ#907344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)"
},
{
"cve": "CVE-2013-0426",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907346"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0426"
},
{
"category": "external",
"summary": "RHBZ#907346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0426"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)"
},
{
"cve": "CVE-2013-0427",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907455"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0427"
},
{
"category": "external",
"summary": "RHBZ#907455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0427"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)"
},
{
"cve": "CVE-2013-0428",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907207"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0428"
},
{
"category": "external",
"summary": "RHBZ#907207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0428"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)"
},
{
"cve": "CVE-2013-0429",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907460"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0429"
},
{
"category": "external",
"summary": "RHBZ#907460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0429"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)"
},
{
"cve": "CVE-2013-0430",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906930"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0430"
},
{
"category": "external",
"summary": "RHBZ#906930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0430"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.4,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)"
},
{
"cve": "CVE-2013-0432",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907219"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0432"
},
{
"category": "external",
"summary": "RHBZ#907219",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0432"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)"
},
{
"cve": "CVE-2013-0433",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907456"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0433"
},
{
"category": "external",
"summary": "RHBZ#907456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0433"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)"
},
{
"cve": "CVE-2013-0434",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907453"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0434"
},
{
"category": "external",
"summary": "RHBZ#907453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0434"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)"
},
{
"cve": "CVE-2013-0435",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906892"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0435"
},
{
"category": "external",
"summary": "RHBZ#906892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0435"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)"
},
{
"cve": "CVE-2013-0438",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906935"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0438"
},
{
"category": "external",
"summary": "RHBZ#906935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0440",
"discovery_date": "2012-07-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "859140"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0440"
},
{
"category": "external",
"summary": "RHBZ#859140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)"
},
{
"cve": "CVE-2013-0441",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907458"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing serialization restriction (CORBA, 7201066)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0441"
},
{
"category": "external",
"summary": "RHBZ#907458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing serialization restriction (CORBA, 7201066)"
},
{
"cve": "CVE-2013-0442",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906899"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0442"
},
{
"category": "external",
"summary": "RHBZ#906899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0442"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)"
},
{
"cve": "CVE-2013-0443",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907340"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0443"
},
{
"category": "external",
"summary": "RHBZ#907340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)"
},
{
"cve": "CVE-2013-0445",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906900"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0445"
},
{
"category": "external",
"summary": "RHBZ#906900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0445"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)"
},
{
"cve": "CVE-2013-0446",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906916"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0446"
},
{
"category": "external",
"summary": "RHBZ#906916",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0446"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-0450",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906911"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0450"
},
{
"category": "external",
"summary": "RHBZ#906911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)"
},
{
"cve": "CVE-2013-1473",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906933"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1473"
},
{
"category": "external",
"summary": "RHBZ#906933",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)"
},
{
"cve": "CVE-2013-1475",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "860652"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1475"
},
{
"category": "external",
"summary": "RHBZ#860652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)"
},
{
"cve": "CVE-2013-1476",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907457"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1476"
},
{
"category": "external",
"summary": "RHBZ#907457",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1476"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)"
},
{
"cve": "CVE-2013-1478",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906894"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1478"
},
{
"category": "external",
"summary": "RHBZ#906894",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1478"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)"
},
{
"cve": "CVE-2013-1480",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "906904"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1480"
},
{
"category": "external",
"summary": "RHBZ#906904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1480"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)"
},
{
"cve": "CVE-2013-1481",
"discovery_date": "2013-02-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "907224"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u39 (Sound)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1481"
},
{
"category": "external",
"summary": "RHBZ#907224",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1481",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1481"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
],
"release_date": "2013-02-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-04T23:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0236"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586",
"5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686",
"6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u39 (Sound)"
}
]
}
var-201302-0232
Vulnerability from variot
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client. Java 7 Update 11, Java 6 Update 38, and earlier versions of Java contain vulnerabilities that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. (DoS) An attack may be carried out. Oracle Java SE is prone to a remote security vulnerability in Java Runtime Environment. This issue affects the 'Install' sub-component. This vulnerability affects the following supported versions: 7 Update 11 and prior, 6 Update 38 and prior Note: This issue was previously discussed in BID 57670 (Oracle Java Runtime Environment Multiple Security Vulnerabilities) but has been given its own record to better document it. ============================================================================ Ubuntu Security Notice USN-1724-1 February 14, 2013
openjdk-6, openjdk-7 vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.10
- Ubuntu 12.04 LTS
- Ubuntu 11.10
- Ubuntu 10.04 LTS
Summary:
Several security issues were fixed in OpenJDK.
Software Description: - openjdk-7: Open Source Java implementation - openjdk-6: Open Source Java implementation
Details:
Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure and data integrity. An attacker could exploit these to cause a denial of service. (CVE-2012-1541, CVE-2012-3342, CVE-2013-0351, CVE-2013-0419, CVE-2013-0423, CVE-2013-0446, CVE-2012-3213, CVE-2013-0425, CVE-2013-0426, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0441, CVE-2013-0442, CVE-2013-0445, CVE-2013-0450, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478, CVE-2013-1480)
Vulnerabilities were discovered in the OpenJDK JRE related to information disclosure. (CVE-2013-0409, CVE-2013-0434, CVE-2013-0438)
Several data integrity vulnerabilities were discovered in the OpenJDK JRE. (CVE-2013-0424, CVE-2013-0427, CVE-2013-0433, CVE-2013-1473)
Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure and data integrity. (CVE-2013-0432, CVE-2013-0435, CVE-2013-0443)
A vulnerability was discovered in the OpenJDK JRE related to availability. An attacker could exploit this to cause a denial of service. (CVE-2013-0440)
A vulnerability was discovered in the OpenJDK JRE related to information disclosure and data integrity. An attacker could exploit this to cause a denial of service. (CVE-2013-0444)
A data integrity vulnerability was discovered in the OpenJDK JRE. (CVE-2013-0448)
An information disclosure vulnerability was discovered in the OpenJDK JRE. (CVE-2013-0449)
A vulnerability was discovered in the OpenJDK JRE related to information disclosure and data integrity. An attacker could exploit this to cause a denial of service. (CVE-2013-1481)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 12.10: icedtea-7-jre-jamvm 7u13-2.3.6-0ubuntu0.12.10.1 openjdk-7-jre 7u13-2.3.6-0ubuntu0.12.10.1 openjdk-7-jre-headless 7u13-2.3.6-0ubuntu0.12.10.1 openjdk-7-jre-lib 7u13-2.3.6-0ubuntu0.12.10.1 openjdk-7-jre-zero 7u13-2.3.6-0ubuntu0.12.10.1
Ubuntu 12.04 LTS: icedtea-6-jre-cacao 6b27-1.12.1-2ubuntu0.12.04.2 icedtea-6-jre-jamvm 6b27-1.12.1-2ubuntu0.12.04.2 openjdk-6-jre 6b27-1.12.1-2ubuntu0.12.04.2 openjdk-6-jre-headless 6b27-1.12.1-2ubuntu0.12.04.2 openjdk-6-jre-lib 6b27-1.12.1-2ubuntu0.12.04.2 openjdk-6-jre-zero 6b27-1.12.1-2ubuntu0.12.04.2
Ubuntu 11.10: icedtea-6-jre-cacao 6b27-1.12.1-2ubuntu0.11.10.2 icedtea-6-jre-jamvm 6b27-1.12.1-2ubuntu0.11.10.2 openjdk-6-jre 6b27-1.12.1-2ubuntu0.11.10.2 openjdk-6-jre-headless 6b27-1.12.1-2ubuntu0.11.10.2 openjdk-6-jre-lib 6b27-1.12.1-2ubuntu0.11.10.2 openjdk-6-jre-zero 6b27-1.12.1-2ubuntu0.11.10.2
Ubuntu 10.04 LTS: icedtea-6-jre-cacao 6b27-1.12.1-2ubuntu0.10.04.2 openjdk-6-jre 6b27-1.12.1-2ubuntu0.10.04.2 openjdk-6-jre-headless 6b27-1.12.1-2ubuntu0.10.04.2 openjdk-6-jre-lib 6b27-1.12.1-2ubuntu0.10.04.2 openjdk-6-jre-zero 6b27-1.12.1-2ubuntu0.10.04.2
This update uses a new upstream release which includes additional bug fixes. After a standard system update you need to restart any Java applications or applets to make all the necessary changes. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201401-30
http://security.gentoo.org/
Severity: High Title: Oracle JRE/JDK: Multiple vulnerabilities Date: January 27, 2014 Bugs: #404071, #421073, #433094, #438706, #451206, #455174, #458444, #460360, #466212, #473830, #473980, #488210, #498148 ID: 201401-30
Synopsis
Multiple vulnerabilities have been found in the Oracle JRE/JDK, allowing attackers to cause unspecified impact.
Affected packages
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-java/sun-jdk <= 1.6.0.45 Vulnerable! 2 dev-java/oracle-jdk-bin < 1.7.0.51 >= 1.7.0.51 * 3 dev-java/sun-jre-bin <= 1.6.0.45 Vulnerable! 4 dev-java/oracle-jre-bin < 1.7.0.51 >= 1.7.0.51 * 5 app-emulation/emul-linux-x86-java < 1.7.0.51 >= 1.7.0.51 * ------------------------------------------------------------------- NOTE: Certain packages are still vulnerable. Users should migrate to another package if one is available or wait for the existing packages to be marked stable by their architecture maintainers. ------------------------------------------------------------------- NOTE: Packages marked with asterisks require manual intervention! ------------------------------------------------------------------- 5 affected packages
Description
Multiple vulnerabilities have been reported in the Oracle Java implementation. Please review the CVE identifiers referenced below for details.
Workaround
There is no known workaround at this time.
Resolution
All Oracle JDK 1.7 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jdk-bin-1.7.0.51"
All Oracle JRE 1.7 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jre-bin-1.7.0.51"
All users of the precompiled 32-bit Oracle JRE should upgrade to the latest version:
# emerge --sync # emerge -a -1 -v ">=app-emulation/emul-linux-x86-java-1.7.0.51"
All Sun Microsystems JDK/JRE 1.6 users are suggested to upgrade to one of the newer Oracle packages like dev-java/oracle-jdk-bin or dev-java/oracle-jre-bin or choose another alternative we provide; eg. the IBM JDK/JRE or the open source IcedTea.
References
[ 1 ] CVE-2011-3563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563 [ 2 ] CVE-2011-5035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035 [ 3 ] CVE-2012-0497 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497 [ 4 ] CVE-2012-0498 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0498 [ 5 ] CVE-2012-0499 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0499 [ 6 ] CVE-2012-0500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0500 [ 7 ] CVE-2012-0501 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501 [ 8 ] CVE-2012-0502 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502 [ 9 ] CVE-2012-0503 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503 [ 10 ] CVE-2012-0504 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0504 [ 11 ] CVE-2012-0505 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505 [ 12 ] CVE-2012-0506 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506 [ 13 ] CVE-2012-0507 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0507 [ 14 ] CVE-2012-0547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547 [ 15 ] CVE-2012-1531 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1531 [ 16 ] CVE-2012-1532 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1532 [ 17 ] CVE-2012-1533 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1533 [ 18 ] CVE-2012-1541 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1541 [ 19 ] CVE-2012-1682 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1682 [ 20 ] CVE-2012-1711 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711 [ 21 ] CVE-2012-1713 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713 [ 22 ] CVE-2012-1716 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716 [ 23 ] CVE-2012-1717 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717 [ 24 ] CVE-2012-1718 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718 [ 25 ] CVE-2012-1719 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719 [ 26 ] CVE-2012-1721 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1721 [ 27 ] CVE-2012-1722 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1722 [ 28 ] CVE-2012-1723 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723 [ 29 ] CVE-2012-1724 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724 [ 30 ] CVE-2012-1725 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725 [ 31 ] CVE-2012-1726 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726 [ 32 ] CVE-2012-3136 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3136 [ 33 ] CVE-2012-3143 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3143 [ 34 ] CVE-2012-3159 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3159 [ 35 ] CVE-2012-3174 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3174 [ 36 ] CVE-2012-3213 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3213 [ 37 ] CVE-2012-3216 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216 [ 38 ] CVE-2012-3342 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3342 [ 39 ] CVE-2012-4416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416 [ 40 ] CVE-2012-4681 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4681 [ 41 ] CVE-2012-5067 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5067 [ 42 ] CVE-2012-5068 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068 [ 43 ] CVE-2012-5069 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069 [ 44 ] CVE-2012-5070 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070 [ 45 ] CVE-2012-5071 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071 [ 46 ] CVE-2012-5072 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072 [ 47 ] CVE-2012-5073 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073 [ 48 ] CVE-2012-5074 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074 [ 49 ] CVE-2012-5075 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075 [ 50 ] CVE-2012-5076 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076 [ 51 ] CVE-2012-5077 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077 [ 52 ] CVE-2012-5079 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5079 [ 53 ] CVE-2012-5081 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081 [ 54 ] CVE-2012-5083 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5083 [ 55 ] CVE-2012-5084 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084 [ 56 ] CVE-2012-5085 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085 [ 57 ] CVE-2012-5086 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086 [ 58 ] CVE-2012-5087 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087 [ 59 ] CVE-2012-5088 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5088 [ 60 ] CVE-2012-5089 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089 [ 61 ] CVE-2013-0169 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169 [ 62 ] CVE-2013-0351 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0351 [ 63 ] CVE-2013-0401 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401 [ 64 ] CVE-2013-0402 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0402 [ 65 ] CVE-2013-0409 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0409 [ 66 ] CVE-2013-0419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0419 [ 67 ] CVE-2013-0422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0422 [ 68 ] CVE-2013-0423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0423 [ 69 ] CVE-2013-0430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0430 [ 70 ] CVE-2013-0437 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0437 [ 71 ] CVE-2013-0438 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0438 [ 72 ] CVE-2013-0445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0445 [ 73 ] CVE-2013-0446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0446 [ 74 ] CVE-2013-0448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0448 [ 75 ] CVE-2013-0449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0449 [ 76 ] CVE-2013-0809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809 [ 77 ] CVE-2013-1473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1473 [ 78 ] CVE-2013-1479 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1479 [ 79 ] CVE-2013-1481 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1481 [ 80 ] CVE-2013-1484 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484 [ 81 ] CVE-2013-1485 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485 [ 82 ] CVE-2013-1486 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486 [ 83 ] CVE-2013-1487 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1487 [ 84 ] CVE-2013-1488 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488 [ 85 ] CVE-2013-1491 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1491 [ 86 ] CVE-2013-1493 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493 [ 87 ] CVE-2013-1500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500 [ 88 ] CVE-2013-1518 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518 [ 89 ] CVE-2013-1537 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537 [ 90 ] CVE-2013-1540 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1540 [ 91 ] CVE-2013-1557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557 [ 92 ] CVE-2013-1558 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1558 [ 93 ] CVE-2013-1561 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1561 [ 94 ] CVE-2013-1563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1563 [ 95 ] CVE-2013-1564 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1564 [ 96 ] CVE-2013-1569 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569 [ 97 ] CVE-2013-1571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571 [ 98 ] CVE-2013-2383 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383 [ 99 ] CVE-2013-2384 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384 [ 100 ] CVE-2013-2394 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2394 [ 101 ] CVE-2013-2400 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2400 [ 102 ] CVE-2013-2407 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407 [ 103 ] CVE-2013-2412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412 [ 104 ] CVE-2013-2414 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2414 [ 105 ] CVE-2013-2415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415 [ 106 ] CVE-2013-2416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2416 [ 107 ] CVE-2013-2417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417 [ 108 ] CVE-2013-2418 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2418 [ 109 ] CVE-2013-2419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419 [ 110 ] CVE-2013-2420 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420 [ 111 ] CVE-2013-2421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421 [ 112 ] CVE-2013-2422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422 [ 113 ] CVE-2013-2423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423 [ 114 ] CVE-2013-2424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424 [ 115 ] CVE-2013-2425 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2425 [ 116 ] CVE-2013-2426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426 [ 117 ] CVE-2013-2427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2427 [ 118 ] CVE-2013-2428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2428 [ 119 ] CVE-2013-2429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429 [ 120 ] CVE-2013-2430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430 [ 121 ] CVE-2013-2431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431 [ 122 ] CVE-2013-2432 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2432 [ 123 ] CVE-2013-2433 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2433 [ 124 ] CVE-2013-2434 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2434 [ 125 ] CVE-2013-2435 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2435 [ 126 ] CVE-2013-2436 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436 [ 127 ] CVE-2013-2437 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2437 [ 128 ] CVE-2013-2438 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2438 [ 129 ] CVE-2013-2439 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2439 [ 130 ] CVE-2013-2440 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2440 [ 131 ] CVE-2013-2442 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2442 [ 132 ] CVE-2013-2443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443 [ 133 ] CVE-2013-2444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444 [ 134 ] CVE-2013-2445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445 [ 135 ] CVE-2013-2446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446 [ 136 ] CVE-2013-2447 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447 [ 137 ] CVE-2013-2448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448 [ 138 ] CVE-2013-2449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449 [ 139 ] CVE-2013-2450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450 [ 140 ] CVE-2013-2451 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451 [ 141 ] CVE-2013-2452 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452 [ 142 ] CVE-2013-2453 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453 [ 143 ] CVE-2013-2454 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454 [ 144 ] CVE-2013-2455 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455 [ 145 ] CVE-2013-2456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456 [ 146 ] CVE-2013-2457 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457 [ 147 ] CVE-2013-2458 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458 [ 148 ] CVE-2013-2459 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459 [ 149 ] CVE-2013-2460 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460 [ 150 ] CVE-2013-2461 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461 [ 151 ] CVE-2013-2462 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2462 [ 152 ] CVE-2013-2463 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463 [ 153 ] CVE-2013-2464 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2464 [ 154 ] CVE-2013-2465 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465 [ 155 ] CVE-2013-2466 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2466 [ 156 ] CVE-2013-2467 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2467 [ 157 ] CVE-2013-2468 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2468 [ 158 ] CVE-2013-2469 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469 [ 159 ] CVE-2013-2470 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470 [ 160 ] CVE-2013-2471 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471 [ 161 ] CVE-2013-2472 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472 [ 162 ] CVE-2013-2473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473 [ 163 ] CVE-2013-3743 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3743 [ 164 ] CVE-2013-3744 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3744 [ 165 ] CVE-2013-3829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829 [ 166 ] CVE-2013-5772 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772 [ 167 ] CVE-2013-5774 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774 [ 168 ] CVE-2013-5775 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5775 [ 169 ] CVE-2013-5776 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5776 [ 170 ] CVE-2013-5777 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5777 [ 171 ] CVE-2013-5778 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778 [ 172 ] CVE-2013-5780 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780 [ 173 ] CVE-2013-5782 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782 [ 174 ] CVE-2013-5783 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783 [ 175 ] CVE-2013-5784 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784 [ 176 ] CVE-2013-5787 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5787 [ 177 ] CVE-2013-5788 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5788 [ 178 ] CVE-2013-5789 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5789 [ 179 ] CVE-2013-5790 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790 [ 180 ] CVE-2013-5797 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797 [ 181 ] CVE-2013-5800 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800 [ 182 ] CVE-2013-5801 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5801 [ 183 ] CVE-2013-5802 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802 [ 184 ] CVE-2013-5803 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803 [ 185 ] CVE-2013-5804 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804 [ 186 ] CVE-2013-5805 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805 [ 187 ] CVE-2013-5806 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806 [ 188 ] CVE-2013-5809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809 [ 189 ] CVE-2013-5810 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5810 [ 190 ] CVE-2013-5812 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5812 [ 191 ] CVE-2013-5814 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814 [ 192 ] CVE-2013-5817 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817 [ 193 ] CVE-2013-5818 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5818 [ 194 ] CVE-2013-5819 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5819 [ 195 ] CVE-2013-5820 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820 [ 196 ] CVE-2013-5823 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823 [ 197 ] CVE-2013-5824 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5824 [ 198 ] CVE-2013-5825 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825 [ 199 ] CVE-2013-5829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829 [ 200 ] CVE-2013-5830 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830 [ 201 ] CVE-2013-5831 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5831 [ 202 ] CVE-2013-5832 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5832 [ 203 ] CVE-2013-5838 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5838 [ 204 ] CVE-2013-5840 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840 [ 205 ] CVE-2013-5842 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842 [ 206 ] CVE-2013-5843 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5843 [ 207 ] CVE-2013-5844 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5844 [ 208 ] CVE-2013-5846 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5846 [ 209 ] CVE-2013-5848 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5848 [ 210 ] CVE-2013-5849 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849 [ 211 ] CVE-2013-5850 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850 [ 212 ] CVE-2013-5851 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851 [ 213 ] CVE-2013-5852 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5852 [ 214 ] CVE-2013-5854 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5854 [ 215 ] CVE-2013-5870 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5870 [ 216 ] CVE-2013-5878 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5878 [ 217 ] CVE-2013-5887 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5887 [ 218 ] CVE-2013-5888 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5888 [ 219 ] CVE-2013-5889 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5889 [ 220 ] CVE-2013-5893 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5893 [ 221 ] CVE-2013-5895 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5895 [ 222 ] CVE-2013-5896 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5896 [ 223 ] CVE-2013-5898 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5898 [ 224 ] CVE-2013-5899 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5899 [ 225 ] CVE-2013-5902 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5902 [ 226 ] CVE-2013-5904 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5904 [ 227 ] CVE-2013-5905 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5905 [ 228 ] CVE-2013-5906 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5906 [ 229 ] CVE-2013-5907 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5907 [ 230 ] CVE-2013-5910 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5910 [ 231 ] CVE-2014-0368 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0368 [ 232 ] CVE-2014-0373 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0373 [ 233 ] CVE-2014-0375 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0375 [ 234 ] CVE-2014-0376 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0376 [ 235 ] CVE-2014-0382 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0382 [ 236 ] CVE-2014-0385 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0385 [ 237 ] CVE-2014-0387 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0387 [ 238 ] CVE-2014-0403 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0403 [ 239 ] CVE-2014-0408 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0408 [ 240 ] CVE-2014-0410 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0410 [ 241 ] CVE-2014-0411 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0411 [ 242 ] CVE-2014-0415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0415 [ 243 ] CVE-2014-0416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0416 [ 244 ] CVE-2014-0417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0417 [ 245 ] CVE-2014-0418 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0418 [ 246 ] CVE-2014-0422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0422 [ 247 ] CVE-2014-0423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0423 [ 248 ] CVE-2014-0424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0424 [ 249 ] CVE-2014-0428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0428
Availability
This GLSA and any updates to it are available for viewing at the Gentoo Security Website:
http://security.gentoo.org/glsa/glsa-201401-30.xml
Concerns?
Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.
License
Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s).
The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.5 .
Release Date: 2013-04-29 Last Updated: 2013-04-29
Potential Security Impact: Java Runtime Environment (JRE) security update
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY Several potential security vulnerabilities have been identified with HP Service Manager for Windows, Linux, HP-UX, Solaris and AIX.
References: CVE-2013-1487, CVE-2013-1486, CVE-2013-1484,CVE-2013-1485,CVE-2013-0169, CVE-2013-0437, CVE-2013-1478, CVE-2013-0442, CVE-2013-0445, CVE-2013-1480, CVE-2013-0441, CVE-2013-1475, CVE-2013-1476, CVE-2012-1541, CVE-2013-0446, CVE-2012-3342, CVE-2013-0450, CVE-2013-1479, CVE-2013-0425, CVE-2013-0426, CVE-2013-0428, CVE-2012-3213, CVE-2013-1481, CVE-2013-0436, CVE-2013-0439, CVE-2013-0447, CVE-2013-1472, CVE-2012-4301, CVE-2013-1477, CVE-2013-1482, CVE-2013-1483, CVE-2013-1474, CVE-2012-4305, CVE-2013-0444, CVE-2013-0429, CVE-2013-0419, CVE-2013-0423, CVE-2012-1543, CVE-2013-0351, CVE-2013-0430, CVE-2013-0432, CVE-2013-0449, CVE-2013-1473, CVE-2013-0435, CVE-2013-0434, CVE-2013-0409, CVE-2013-0431, CVE-2013-0427, CVE-2013-0448, CVE-2013-0433, CVE-2013-0424, CVE-2013-0440, CVE-2013-0438, CVE-2013-0443, CVE-2013-1489
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP Service Manager for Windows, Linux, HP-UX, Solaris and AIX v 9.30, v9.31
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2012-1541 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-1543 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2012-3213 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-3342 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-4301 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-4305 (AV:N/AC:M/Au:N/C:C/I:C/A:C) 9.3 CVE-2013-0169 (AV:N/AC:H/Au:N/C:P/I:N/A:N) 2.6 CVE-2013-0351 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2013-0409 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-0419 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-0423 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-0424 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-0425 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0426 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0427 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-0428 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0429 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-0430 (AV:L/AC:M/Au:N/C:C/I:C/A:C) 6.9 CVE-2013-0431 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-0432 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 CVE-2013-0433 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-0434 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-0435 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-0436 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0437 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0438 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 CVE-2013-0439 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0440 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2013-0441 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0442 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0443 (AV:N/AC:H/Au:N/C:P/I:P/A:N) 4.0 CVE-2013-0444 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-0445 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0446 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0447 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-0448 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-0449 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-0450 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1472 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1473 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-1474 (AV:N/AC:M/Au:N/C:C/I:C/A:C) 9.3 CVE-2013-1475 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1476 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1477 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1478 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1479 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1480 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1481 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1482 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1483 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1484 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1485 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-1486 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1487 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1489 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided an update for Service Manager that updates the JRE to the latest version, thus eliminating known JRE7-related security vulnerabilities. Download and install the updates from The HP Software Support Online (SSO).
SM 9.31P2 Server Windows Server 9.31.2004 p2 http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00423
HP Itanium Server 9.31.2004 p2 http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00420
Linux Server 9.31.2004 p2 http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00421
Solaris Server 9.31.2004 p2 http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00422
AIX Server 9.31.2004 p2 http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00419
SM 9.31P2 Web Tier Web Tier 9.31.2004 p2 http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00424
SM 9.31P2 Windows Client Windows Client 9.31.2004 p2 http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00425
SM 9.31P2 Knowledge Management SM 9.31P2 Knowledge Management http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00426
HISTORY Version:1 (rev.1) - 29 April 2013 Initial release
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c02964430
Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2013 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
===================================================================== Red Hat Security Advisory
Synopsis: Critical: java-1.6.0-sun security update Advisory ID: RHSA-2013:0236-01 Product: Red Hat Enterprise Linux Extras Advisory URL: https://rhn.redhat.com/errata/RHSA-2013-0236.html Issue date: 2013-02-04 CVE Names: CVE-2012-1541 CVE-2012-3213 CVE-2012-3342 CVE-2013-0351 CVE-2013-0409 CVE-2013-0419 CVE-2013-0423 CVE-2013-0424 CVE-2013-0425 CVE-2013-0426 CVE-2013-0427 CVE-2013-0428 CVE-2013-0429 CVE-2013-0430 CVE-2013-0432 CVE-2013-0433 CVE-2013-0434 CVE-2013-0435 CVE-2013-0438 CVE-2013-0440 CVE-2013-0441 CVE-2013-0442 CVE-2013-0443 CVE-2013-0445 CVE-2013-0446 CVE-2013-0450 CVE-2013-1473 CVE-2013-1475 CVE-2013-1476 CVE-2013-1478 CVE-2013-1480 CVE-2013-1481 =====================================================================
- Summary:
Updated java-1.6.0-sun packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Supplementary (v. 6) - x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64
- (CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409, CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426, CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446, CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478, CVE-2013-1480, CVE-2013-1481)
All users of java-1.6.0-sun are advised to upgrade to these updated packages, which provide Oracle Java 6 Update 39. All running instances of Oracle Java must be restarted for the update to take effect.
- Solution:
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258
- Bugs fixed (http://bugzilla.redhat.com/):
859140 - CVE-2013-0440 OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393) 860652 - CVE-2013-1475 OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50) 906813 - CVE-2013-0424 OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318) 906892 - CVE-2013-0435 OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068) 906894 - CVE-2013-1478 OpenJDK: image parser insufficient raster parameter checks (2D, 8001972) 906899 - CVE-2013-0442 OpenJDK: insufficient privilege checking issue (AWT, 7192977) 906900 - CVE-2013-0445 OpenJDK: insufficient privilege checking issue (AWT, 8001057) 906904 - CVE-2013-1480 OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325) 906911 - CVE-2013-0450 OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537) 906914 - CVE-2012-1541 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment) 906916 - CVE-2013-0446 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment) 906917 - CVE-2012-3342 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment) 906918 - CVE-2013-0419 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment) 906921 - CVE-2013-0423 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment) 906923 - CVE-2013-0351 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment) 906930 - CVE-2013-0430 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install) 906933 - CVE-2013-1473 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment) 906935 - CVE-2013-0438 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment) 907207 - CVE-2013-0428 OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29) 907219 - CVE-2013-0432 OpenJDK: insufficient clipboard access premission checks (AWT, 7186952) 907223 - CVE-2012-3213 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting) 907224 - CVE-2013-1481 Oracle JDK: unspecified vulnerability fixed in 6u39 (Sound) 907226 - CVE-2013-0409 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX) 907340 - CVE-2013-0443 OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392) 907344 - CVE-2013-0425 OpenJDK: logging insufficient access control checks (Libraries, 6664509) 907346 - CVE-2013-0426 OpenJDK: logging insufficient access control checks (Libraries, 6664528) 907453 - CVE-2013-0434 OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235) 907455 - CVE-2013-0427 OpenJDK: invalid threads subject to interrupts (Libraries, 6776941) 907456 - CVE-2013-0433 OpenJDK: InetSocketAddress serialization issue (Networking, 7201071) 907457 - CVE-2013-1476 OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631) 907458 - CVE-2013-0441 OpenJDK: missing serialization restriction (CORBA, 7201066) 907460 - CVE-2013-0429 OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)
- Package List:
Red Hat Enterprise Linux Desktop Supplementary (v. 5):
i386: java-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.i586.rpm
x86_64: java-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.x86_64.rpm
Red Hat Enterprise Linux Server Supplementary (v. 5):
i386: java-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.i586.rpm
x86_64: java-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.x86_64.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.i586.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.x86_64.rpm
Red Hat Enterprise Linux Desktop Supplementary (v. 6):
i386: java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.i686.rpm
x86_64: java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.x86_64.rpm
Red Hat Enterprise Linux HPC Node Supplementary (v. 6):
x86_64: java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.x86_64.rpm
Red Hat Enterprise Linux Server Supplementary (v. 6):
i386: java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.i686.rpm
x86_64: java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.x86_64.rpm
Red Hat Enterprise Linux Workstation Supplementary (v. 6):
i386: java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.i686.rpm
x86_64: java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm java-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.x86_64.rpm java-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package
- References:
https://www.redhat.com/security/data/cve/CVE-2012-1541.html https://www.redhat.com/security/data/cve/CVE-2012-3213.html https://www.redhat.com/security/data/cve/CVE-2012-3342.html https://www.redhat.com/security/data/cve/CVE-2013-0351.html https://www.redhat.com/security/data/cve/CVE-2013-0409.html https://www.redhat.com/security/data/cve/CVE-2013-0419.html https://www.redhat.com/security/data/cve/CVE-2013-0423.html https://www.redhat.com/security/data/cve/CVE-2013-0424.html https://www.redhat.com/security/data/cve/CVE-2013-0425.html https://www.redhat.com/security/data/cve/CVE-2013-0426.html https://www.redhat.com/security/data/cve/CVE-2013-0427.html https://www.redhat.com/security/data/cve/CVE-2013-0428.html https://www.redhat.com/security/data/cve/CVE-2013-0429.html https://www.redhat.com/security/data/cve/CVE-2013-0430.html https://www.redhat.com/security/data/cve/CVE-2013-0432.html https://www.redhat.com/security/data/cve/CVE-2013-0433.html https://www.redhat.com/security/data/cve/CVE-2013-0434.html https://www.redhat.com/security/data/cve/CVE-2013-0435.html https://www.redhat.com/security/data/cve/CVE-2013-0438.html https://www.redhat.com/security/data/cve/CVE-2013-0440.html https://www.redhat.com/security/data/cve/CVE-2013-0441.html https://www.redhat.com/security/data/cve/CVE-2013-0442.html https://www.redhat.com/security/data/cve/CVE-2013-0443.html https://www.redhat.com/security/data/cve/CVE-2013-0445.html https://www.redhat.com/security/data/cve/CVE-2013-0446.html https://www.redhat.com/security/data/cve/CVE-2013-0450.html https://www.redhat.com/security/data/cve/CVE-2013-1473.html https://www.redhat.com/security/data/cve/CVE-2013-1475.html https://www.redhat.com/security/data/cve/CVE-2013-1476.html https://www.redhat.com/security/data/cve/CVE-2013-1478.html https://www.redhat.com/security/data/cve/CVE-2013-1480.html https://www.redhat.com/security/data/cve/CVE-2013-1481.html https://access.redhat.com/security/updates/classification/#critical http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux)
iD8DBQFREE7WXlSAg2UNWIIRAuWTAJ4g2iIk0XnUEpbIXz6nDgDjaHxz7ACbBcjy gqkoqFew2BZDYA/n817qYO8= =m5pJ -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . ----------------------------------------------------------------------
The final version of the CSI 6.0 has been released. Find out why this is not just another Patch Management solution: http://secunia.com/blog/325/
TITLE: Oracle Java Multiple Vulnerabilities
SECUNIA ADVISORY ID: SA52064
VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/52064/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=52064
RELEASE DATE: 2013-02-02
DISCUSS ADVISORY: http://secunia.com/advisories/52064/#comments
AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)
http://secunia.com/advisories/52064/
ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS
https://ca.secunia.com/?page=viewadvisory&vuln_id=52064
ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING
http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
DESCRIPTION: Multiple vulnerabilities have been reported in Oracle Java, which can be exploited by malicious local users to gain escalated privileges and by malicious people to disclose certain sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
1) An unspecified error in the 2D component of the client and server deployment can be exploited to potentially execute arbitrary code.
2) An unspecified error in the 2D component of the client and server deployment can be exploited to potentially execute arbitrary code.
3) An unspecified error in the AWT component of the client deployment can be exploited to potentially execute arbitrary code.
4) An unspecified error in the AWT component of the client deployment can be exploited to potentially execute arbitrary code.
5) An unspecified error in the AWT component of the client and server deployment can be exploited to potentially execute arbitrary code.
6) An unspecified error in the CORBA component of the client deployment can be exploited to potentially execute arbitrary code.
7) An unspecified error in the CORBA component of the client deployment can be exploited to potentially execute arbitrary code.
8) An unspecified error in the CORBA component of the client deployment can be exploited to potentially execute arbitrary code.
9) An unspecified error in the Deployment component of the client deployment can be exploited to potentially execute arbitrary code.
10) An unspecified error in the Deployment component of the client deployment can be exploited to potentially execute arbitrary code.
11) An unspecified error in the Deployment component of the client deployment can be exploited to potentially execute arbitrary code.
12) An unspecified error in the JMX component of the client deployment can be exploited to potentially execute arbitrary code.
13) An unspecified error in the JavaFX component of the client deployment can be exploited to potentially execute arbitrary code.
14) An unspecified error in the Libraries component of the client deployment can be exploited to potentially execute arbitrary code.
15) An unspecified error in the Libraries component of the client deployment can be exploited to potentially execute arbitrary code.
16) An unspecified error in the Libraries component of the client deployment can be exploited to potentially execute arbitrary code.
17) An unspecified error in the Scripting component of the client deployment can be exploited to potentially execute arbitrary code.
18) An unspecified error in the Sound component of the client deployment can be exploited to potentially execute arbitrary code.
19) An unspecified error in the Beans component of the client deployment can be exploited to potentially execute arbitrary code.
20) An unspecified error in the CORBA component of the client deployment can be exploited to potentially execute arbitrary code.
21) An unspecified error in the Deployment component of the client deployment can be exploited to potentially execute arbitrary code.
22) An unspecified error in the Deployment component of the client deployment can be exploited to potentially execute arbitrary code.
23) An unspecified error in the Deployment component of the client deployment can be exploited to disclose and manipulate certain data and cause a DoS.
24) An unspecified error in the Install component of the client deployment can be exploited by a local user to gain escalated privileges.
25) An unspecified error in the AWT component of the client deployment can be exploited to disclose and manipulate certain data.
26) An unspecified error in the Deployment component of the client deployment can be exploited to disclose certain data.
27) An unspecified error in the Deployment component of the client deployment can be exploited to manipulate certain data.
28) An unspecified error in the JAX-WS component of the client deployment can be exploited to disclose certain data.
29) An unspecified error in the JAXP component of the client deployment can be exploited to disclose certain data.
30) An unspecified error in the JMX component of the client deployment can be exploited to disclose certain data.
31) An unspecified error in the JMX component of the client deployment can be exploited to disclose certain data.
32) An unspecified error in the Libraries component of the client deployment can be exploited to manipulate certain data.
33) An unspecified error in the Libraries component of the client deployment can be exploited to manipulate certain data.
34) An unspecified error in the Networking component of the client deployment can be exploited to manipulate certain data.
35) An unspecified error in the RMI component of the client deployment can be exploited to manipulate certain data.
36) An unspecified error in the JSSE component of the server deployment can be exploited via SSL/TLS to cause a DoS.
37) An unspecified error in the Deployment component of the client deployment can be exploited to disclose certain data.
38) An unspecified error in the JSSE component of the client deployment can be exploited via SSL/TLS to disclose and manipulate certain data.
The vulnerabilities are reported in the following products: * JDK and JRE 7 Update 11 and earlier. * JDK and JRE 6 Update 38 and earlier. * JDK and JRE 5.0 Update 38 and earlier. * SDK and JRE 1.4.2_40 and earlier.
SOLUTION: Apply updates.
Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
PROVIDED AND/OR DISCOVERED BY: One of the vulnerabilities is reported as a 0-day. It is currently unclear who reported the remaining vulnerabilities as the Oracle Jave SE Critical Patch Update for February 2013 only provides a bundled list of credits. This section will be updated when/if the original reporter provides more information.
ORIGINAL ADVISORY: http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html http://www.oracle.com/technetwork/topics/security/javacpufeb2013verbose-1841196.html
OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Show details on source website
{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201302-0232",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "jre",
"scope": "eq",
"trust": 1.0,
"vendor": "sun",
"version": "1.6.0"
},
{
"model": "jdk",
"scope": "eq",
"trust": 1.0,
"vendor": "oracle",
"version": "1.6.0"
},
{
"model": "jdk",
"scope": "eq",
"trust": 1.0,
"vendor": "sun",
"version": "1.6.0"
},
{
"model": "jre",
"scope": "eq",
"trust": 1.0,
"vendor": "oracle",
"version": "1.7.0"
},
{
"model": "jre",
"scope": "eq",
"trust": 1.0,
"vendor": "oracle",
"version": "1.6.0"
},
{
"model": "jdk",
"scope": "eq",
"trust": 1.0,
"vendor": "oracle",
"version": "1.7.0"
},
{
"model": "jre 1.6.0 03",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jre 17",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre 1.7.0 8",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 30",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 18",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jdk 1.6.0 35",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 22",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 05",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 1.6.0 28",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 14",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 1.6.0 21",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jdk 1.6.0 20",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jre 1.6.0 32",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 38",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 25",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 07",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre 1.6.0 35",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 18",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jdk 1.6.0 27",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 19",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jre 1.7.0 10",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 03",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jdk 17",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre 1.7.0 2",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 10",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 1.7.0 8",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.7.0 2",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 14",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jdk 04",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 1.7.0 10",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 04",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 1.6.0 25",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 37",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 27",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.7.0 11",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 15",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jdk 1.6.0 30",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 12",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre 1.7.0 7",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.7"
},
{
"model": "jre 1.6.0 02",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jre",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre 1.6.0 23",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 01",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jdk 1.7.0 4",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.7.0 9",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 06",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre 1.6.0 19",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jdk 1.7.0 9",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 38",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 15",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jre 07",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 1.7.0 11",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 28",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 23",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 11",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jre 13",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 1.7.0 7",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 32",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 02",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jre 05",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre 1.7.0 4",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 26",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 26",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 1.6.0 21",
"scope": null,
"trust": 0.9,
"vendor": "sun",
"version": null
},
{
"model": "jre 1.6.0 24",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jre 06",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 11",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk 10",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jdk",
"scope": "eq",
"trust": 0.9,
"vendor": "oracle",
"version": "1.7"
},
{
"model": "jdk 1.6.0 22",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 1.6.0 24",
"scope": null,
"trust": 0.9,
"vendor": "oracle",
"version": null
},
{
"model": "jdk 13",
"scope": "eq",
"trust": 0.9,
"vendor": "sun",
"version": "1.6"
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "apple",
"version": null
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "oracle",
"version": null
},
{
"model": "jdk",
"scope": "lte",
"trust": 0.8,
"vendor": "oracle",
"version": "6 update 38"
},
{
"model": "jdk",
"scope": "lte",
"trust": 0.8,
"vendor": "oracle",
"version": "7 update 11"
},
{
"model": "jre",
"scope": "lte",
"trust": 0.8,
"vendor": "oracle",
"version": "6 update 38"
},
{
"model": "jre",
"scope": "lte",
"trust": 0.8,
"vendor": "oracle",
"version": "7 update 11"
},
{
"model": "jdk",
"scope": "lte",
"trust": 0.8,
"vendor": "sun microsystems",
"version": "6 update 21"
},
{
"model": "jre",
"scope": "lte",
"trust": 0.8,
"vendor": "sun microsystems",
"version": "6 update 21"
},
{
"model": "jdk 01-b06",
"scope": "eq",
"trust": 0.6,
"vendor": "sun",
"version": "1.6"
},
{
"model": "jre 1.6.0 2",
"scope": null,
"trust": 0.6,
"vendor": "sun",
"version": null
},
{
"model": "jdk 1.6.0 01",
"scope": null,
"trust": 0.6,
"vendor": "sun",
"version": null
},
{
"model": "jre 1.6.0 20",
"scope": null,
"trust": 0.6,
"vendor": "sun",
"version": null
},
{
"model": "meeting exchange web conferencing server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "-6.0"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.1"
},
{
"model": "trio tview software",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "3.27.0"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1.1"
},
{
"model": "cms r15",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "tivoli netcool/omnibus",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.3.1"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.3"
},
{
"model": "voice portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.10"
},
{
"model": "jdk 01",
"scope": "eq",
"trust": 0.3,
"vendor": "sun",
"version": "1.6"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2.1"
},
{
"model": "cms r16.3",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "meeting exchange client registration server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "-6.0"
},
{
"model": "voice portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "trio tview software",
"scope": "ne",
"trust": 0.3,
"vendor": "schneider electric",
"version": "3.29.0"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "1.1"
},
{
"model": "call management system r16.1",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.3"
},
{
"model": "tivoli netcool/omnibus fix pack",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "7.3.16"
},
{
"model": "lotus notes fix pack",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.35"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2.3"
},
{
"model": "lotus domino fix pack",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.35"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.6"
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "7.11"
},
{
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "aura communication manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "12.10"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1.2"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.1.5"
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "12.10"
},
{
"model": "aura application server sip core",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "53002.0"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "call management system r16.2",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.0"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.1"
},
{
"model": "tivoli netcool/omnibus fix pack",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "7.311"
},
{
"model": "ir",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.4"
},
{
"model": "aura messaging",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.2"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.1"
},
{
"model": "rational host on-demand",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "11.0.7"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3"
},
{
"model": "freeflow print server 73.c0.41",
"scope": null,
"trust": 0.3,
"vendor": "xerox",
"version": null
},
{
"model": "tivoli netcool/omnibus",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2.1"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.2.2"
},
{
"model": "enterprise linux desktop supplementary",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"model": "aura messaging",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.3"
},
{
"model": "enterprise linux supplementary server",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "5"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.0.1"
},
{
"model": "voice portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.2"
},
{
"model": "voice portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "interactive service manager web tier",
"scope": "eq",
"trust": 0.3,
"vendor": "mercury",
"version": "9.30"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.4"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.0"
},
{
"model": "aura messaging",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.31"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.3"
},
{
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"model": "aura presence services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.2"
},
{
"model": "aura presence services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.2"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.5"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.1"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.2"
},
{
"model": "conferencing standard edition",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"model": "cms r17",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "voice portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "voice portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "call management system r",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "15"
},
{
"model": "interactive service manager web tier",
"scope": "eq",
"trust": 0.3,
"vendor": "mercury",
"version": "7.11"
},
{
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2"
},
{
"model": "linux lts amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "12.04"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.1"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.1.1"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"model": "aura system manager sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "aura communication manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.3"
},
{
"model": "aura session manager sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "ip office server edition",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.1"
},
{
"model": "tivoli netcool/omnibus fix pack",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "7.2.113"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.2"
},
{
"model": "call management system r16.3",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "freeflow print server 73.c5.11",
"scope": null,
"trust": 0.3,
"vendor": "xerox",
"version": null
},
{
"model": "voice portal sp3",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "enterprise linux server supplementary",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.2.3"
},
{
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1.1"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.3"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.3"
},
{
"model": "meeting exchange streaming server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "-6.0"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"model": "call management system r",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "16"
},
{
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.2"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.5"
},
{
"model": "communication server 1000m",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.3"
},
{
"model": "enterprise linux workstation supplementary",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"model": "servicecenter web tier",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.2.8"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.2"
},
{
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.2"
},
{
"model": "tivoli netcool/omnibus",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.3"
},
{
"model": "communication server 1000m signaling server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5"
},
{
"model": "aura messaging",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.1"
},
{
"model": "meeting exchange recording server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "-6.0"
},
{
"model": "communication server 1000e",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.1"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.2.2"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.2.1"
},
{
"model": "interactive service manager web tier",
"scope": "eq",
"trust": 0.3,
"vendor": "mercury",
"version": "9.31"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.1"
},
{
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.2"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "3.1.1"
},
{
"model": "linux lts i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "12.04"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.2.1"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "3.1"
},
{
"model": "aura experience portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.8"
},
{
"model": "aura presence services sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "aura presence services sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "aura system manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "tivoli netcool/omnibus fix pack",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "7.41"
},
{
"model": "aura system manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.1"
},
{
"model": "communication server 1000m signaling server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.4"
},
{
"model": "communication server 1000e",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2.2"
},
{
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.5"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.1.4"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.2"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1.2"
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.10"
},
{
"model": "aura session manager sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.1"
},
{
"model": "aura presence services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.1"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.1"
},
{
"model": "messaging application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.1"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.1.2"
},
{
"model": "aura conferencing sp1 standard",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.1.3"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.2"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.1"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.0.1"
},
{
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.8"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5"
},
{
"model": "aura application server sip core",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "53003.0"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0.2.4"
},
{
"model": "lotus notes",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.0"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1.1"
},
{
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"model": "lotus domino",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.5.1"
},
{
"model": "aura experience portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.5"
},
{
"model": "communication server 1000e signaling server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3"
},
{
"model": "aura messaging",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "cms r16",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"model": "aura system manager sp3",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.2"
},
{
"model": "jdk 1.6.0 01-b06",
"scope": null,
"trust": 0.3,
"vendor": "sun",
"version": null
},
{
"model": "aura conferencing",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"model": "conferencing standard edition",
"scope": "ne",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"model": "meeting exchange webportal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "-6.0"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.1"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "enterprise linux hpc node supplementary",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"model": "enterprise linux desktop supplementary client",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "5"
},
{
"model": "linux",
"scope": null,
"trust": 0.3,
"vendor": "gentoo",
"version": null
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.4"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "communication server 1000e signaling server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.5"
},
{
"model": "aura communication manager utility services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.0.9.8"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1.3"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"model": "rational host on-demand",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "11.0"
},
{
"model": "service manager p2",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "9.31.2004"
},
{
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "3.0"
},
{
"model": "communication server 1000m",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.5"
},
{
"model": "communication server 1000e signaling server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"model": "proactive contact",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0.1"
},
{
"model": "tivoli netcool/omnibus",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.4"
},
{
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "aura conferencing standard",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "communication server 1000m signaling server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.5"
},
{
"model": "aura application server sip core",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "53002.1"
},
{
"model": "communication server 1000e",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.5"
},
{
"model": "service manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9.30"
},
{
"model": "communication server 1000m",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#858729"
},
{
"db": "BID",
"id": "57722"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-001398"
},
{
"db": "NVD",
"id": "CVE-2013-0430"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:oracle:jdk",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:oracle:jre",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:sun:jdk",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:sun:jre",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-001398"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Oracle",
"sources": [
{
"db": "BID",
"id": "57722"
}
],
"trust": 0.3
},
"cve": "CVE-2013-0430",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.4,
"id": "CVE-2013-0430",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 1.8,
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2013-0430",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2013-0430",
"trust": 0.8,
"value": "Medium"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-001398"
},
{
"db": "NVD",
"id": "CVE-2013-0430"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client. Java 7 Update 11, Java 6 Update 38, and earlier versions of Java contain vulnerabilities that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. (DoS) An attack may be carried out. Oracle Java SE is prone to a remote security vulnerability in Java Runtime Environment. \nThis issue affects the \u0027Install\u0027 sub-component. \nThis vulnerability affects the following supported versions:\n7 Update 11 and prior, 6 Update 38 and prior\nNote: This issue was previously discussed in BID 57670 (Oracle Java Runtime Environment Multiple Security Vulnerabilities) but has been given its own record to better document it. ============================================================================\nUbuntu Security Notice USN-1724-1\nFebruary 14, 2013\n\nopenjdk-6, openjdk-7 vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 12.10\n- Ubuntu 12.04 LTS\n- Ubuntu 11.10\n- Ubuntu 10.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in OpenJDK. \n\nSoftware Description:\n- openjdk-7: Open Source Java implementation\n- openjdk-6: Open Source Java implementation\n\nDetails:\n\nSeveral vulnerabilities were discovered in the OpenJDK JRE related to\ninformation disclosure and data integrity. An attacker could exploit these\nto cause a denial of service. (CVE-2012-1541, CVE-2012-3342, CVE-2013-0351,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0446, CVE-2012-3213, CVE-2013-0425,\nCVE-2013-0426, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0441,\nCVE-2013-0442, CVE-2013-0445, CVE-2013-0450, CVE-2013-1475, CVE-2013-1476,\nCVE-2013-1478, CVE-2013-1480)\n\nVulnerabilities were discovered in the OpenJDK JRE related to information\ndisclosure. (CVE-2013-0409, CVE-2013-0434, CVE-2013-0438)\n\nSeveral data integrity vulnerabilities were discovered in the OpenJDK JRE. \n(CVE-2013-0424, CVE-2013-0427, CVE-2013-0433, CVE-2013-1473)\n\nSeveral vulnerabilities were discovered in the OpenJDK JRE related to\ninformation disclosure and data integrity. (CVE-2013-0432, CVE-2013-0435,\nCVE-2013-0443)\n\nA vulnerability was discovered in the OpenJDK JRE related to availability. \nAn attacker could exploit this to cause a denial of service. \n(CVE-2013-0440)\n\nA vulnerability was discovered in the OpenJDK JRE related to information\ndisclosure and data integrity. An attacker could exploit this to cause a\ndenial of service. (CVE-2013-0444)\n\nA data integrity vulnerability was discovered in the OpenJDK JRE. (CVE-2013-0448)\n\nAn information disclosure vulnerability was discovered in the OpenJDK JRE. (CVE-2013-0449)\n\nA vulnerability was discovered in the OpenJDK JRE related to information\ndisclosure and data integrity. An attacker could exploit this to cause a\ndenial of service. (CVE-2013-1481)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 12.10:\n icedtea-7-jre-jamvm 7u13-2.3.6-0ubuntu0.12.10.1\n openjdk-7-jre 7u13-2.3.6-0ubuntu0.12.10.1\n openjdk-7-jre-headless 7u13-2.3.6-0ubuntu0.12.10.1\n openjdk-7-jre-lib 7u13-2.3.6-0ubuntu0.12.10.1\n openjdk-7-jre-zero 7u13-2.3.6-0ubuntu0.12.10.1\n\nUbuntu 12.04 LTS:\n icedtea-6-jre-cacao 6b27-1.12.1-2ubuntu0.12.04.2\n icedtea-6-jre-jamvm 6b27-1.12.1-2ubuntu0.12.04.2\n openjdk-6-jre 6b27-1.12.1-2ubuntu0.12.04.2\n openjdk-6-jre-headless 6b27-1.12.1-2ubuntu0.12.04.2\n openjdk-6-jre-lib 6b27-1.12.1-2ubuntu0.12.04.2\n openjdk-6-jre-zero 6b27-1.12.1-2ubuntu0.12.04.2\n\nUbuntu 11.10:\n icedtea-6-jre-cacao 6b27-1.12.1-2ubuntu0.11.10.2\n icedtea-6-jre-jamvm 6b27-1.12.1-2ubuntu0.11.10.2\n openjdk-6-jre 6b27-1.12.1-2ubuntu0.11.10.2\n openjdk-6-jre-headless 6b27-1.12.1-2ubuntu0.11.10.2\n openjdk-6-jre-lib 6b27-1.12.1-2ubuntu0.11.10.2\n openjdk-6-jre-zero 6b27-1.12.1-2ubuntu0.11.10.2\n\nUbuntu 10.04 LTS:\n icedtea-6-jre-cacao 6b27-1.12.1-2ubuntu0.10.04.2\n openjdk-6-jre 6b27-1.12.1-2ubuntu0.10.04.2\n openjdk-6-jre-headless 6b27-1.12.1-2ubuntu0.10.04.2\n openjdk-6-jre-lib 6b27-1.12.1-2ubuntu0.10.04.2\n openjdk-6-jre-zero 6b27-1.12.1-2ubuntu0.10.04.2\n\nThis update uses a new upstream release which includes additional bug\nfixes. After a standard system update you need to restart any Java\napplications or applets to make all the necessary changes. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory GLSA 201401-30\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: High\n Title: Oracle JRE/JDK: Multiple vulnerabilities\n Date: January 27, 2014\n Bugs: #404071, #421073, #433094, #438706, #451206, #455174,\n #458444, #460360, #466212, #473830, #473980, #488210, #498148\n ID: 201401-30\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in the Oracle JRE/JDK,\nallowing attackers to cause unspecified impact. \n\nAffected packages\n=================\n\n -------------------------------------------------------------------\n Package / Vulnerable / Unaffected\n -------------------------------------------------------------------\n 1 dev-java/sun-jdk \u003c= 1.6.0.45 Vulnerable!\n 2 dev-java/oracle-jdk-bin \u003c 1.7.0.51 \u003e= 1.7.0.51 *\n 3 dev-java/sun-jre-bin \u003c= 1.6.0.45 Vulnerable!\n 4 dev-java/oracle-jre-bin \u003c 1.7.0.51 \u003e= 1.7.0.51 *\n 5 app-emulation/emul-linux-x86-java\n \u003c 1.7.0.51 \u003e= 1.7.0.51 *\n -------------------------------------------------------------------\n NOTE: Certain packages are still vulnerable. Users should migrate\n to another package if one is available or wait for the\n existing packages to be marked stable by their\n architecture maintainers. \n -------------------------------------------------------------------\n NOTE: Packages marked with asterisks require manual intervention!\n -------------------------------------------------------------------\n 5 affected packages\n\nDescription\n===========\n\nMultiple vulnerabilities have been reported in the Oracle Java\nimplementation. Please review the CVE identifiers referenced below for\ndetails. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll Oracle JDK 1.7 users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot -v \"\u003e=dev-java/oracle-jdk-bin-1.7.0.51\"\n\nAll Oracle JRE 1.7 users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot -v \"\u003e=dev-java/oracle-jre-bin-1.7.0.51\"\n\nAll users of the precompiled 32-bit Oracle JRE should upgrade to the\nlatest version:\n\n # emerge --sync\n # emerge -a -1 -v \"\u003e=app-emulation/emul-linux-x86-java-1.7.0.51\"\n\nAll Sun Microsystems JDK/JRE 1.6 users are suggested to upgrade to one\nof the newer Oracle packages like dev-java/oracle-jdk-bin or\ndev-java/oracle-jre-bin or choose another alternative we provide; eg. \nthe IBM JDK/JRE or the open source IcedTea. \n\nReferences\n==========\n\n[ 1 ] CVE-2011-3563\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563\n[ 2 ] CVE-2011-5035\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035\n[ 3 ] CVE-2012-0497\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497\n[ 4 ] CVE-2012-0498\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0498\n[ 5 ] CVE-2012-0499\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0499\n[ 6 ] CVE-2012-0500\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0500\n[ 7 ] CVE-2012-0501\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501\n[ 8 ] CVE-2012-0502\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502\n[ 9 ] CVE-2012-0503\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503\n[ 10 ] CVE-2012-0504\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0504\n[ 11 ] CVE-2012-0505\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505\n[ 12 ] CVE-2012-0506\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506\n[ 13 ] CVE-2012-0507\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0507\n[ 14 ] CVE-2012-0547\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547\n[ 15 ] CVE-2012-1531\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1531\n[ 16 ] CVE-2012-1532\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1532\n[ 17 ] CVE-2012-1533\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1533\n[ 18 ] CVE-2012-1541\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1541\n[ 19 ] CVE-2012-1682\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1682\n[ 20 ] CVE-2012-1711\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711\n[ 21 ] CVE-2012-1713\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713\n[ 22 ] CVE-2012-1716\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716\n[ 23 ] CVE-2012-1717\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717\n[ 24 ] CVE-2012-1718\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718\n[ 25 ] CVE-2012-1719\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719\n[ 26 ] CVE-2012-1721\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1721\n[ 27 ] CVE-2012-1722\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1722\n[ 28 ] CVE-2012-1723\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723\n[ 29 ] CVE-2012-1724\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724\n[ 30 ] CVE-2012-1725\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725\n[ 31 ] CVE-2012-1726\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726\n[ 32 ] CVE-2012-3136\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3136\n[ 33 ] CVE-2012-3143\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3143\n[ 34 ] CVE-2012-3159\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3159\n[ 35 ] CVE-2012-3174\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3174\n[ 36 ] CVE-2012-3213\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3213\n[ 37 ] CVE-2012-3216\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216\n[ 38 ] CVE-2012-3342\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3342\n[ 39 ] CVE-2012-4416\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416\n[ 40 ] CVE-2012-4681\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4681\n[ 41 ] CVE-2012-5067\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5067\n[ 42 ] CVE-2012-5068\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068\n[ 43 ] CVE-2012-5069\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069\n[ 44 ] CVE-2012-5070\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070\n[ 45 ] CVE-2012-5071\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071\n[ 46 ] CVE-2012-5072\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072\n[ 47 ] CVE-2012-5073\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073\n[ 48 ] CVE-2012-5074\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074\n[ 49 ] CVE-2012-5075\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075\n[ 50 ] CVE-2012-5076\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076\n[ 51 ] CVE-2012-5077\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077\n[ 52 ] CVE-2012-5079\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5079\n[ 53 ] CVE-2012-5081\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081\n[ 54 ] CVE-2012-5083\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5083\n[ 55 ] CVE-2012-5084\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084\n[ 56 ] CVE-2012-5085\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085\n[ 57 ] CVE-2012-5086\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086\n[ 58 ] CVE-2012-5087\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087\n[ 59 ] CVE-2012-5088\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5088\n[ 60 ] CVE-2012-5089\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089\n[ 61 ] CVE-2013-0169\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169\n[ 62 ] CVE-2013-0351\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0351\n[ 63 ] CVE-2013-0401\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401\n[ 64 ] CVE-2013-0402\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0402\n[ 65 ] CVE-2013-0409\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0409\n[ 66 ] CVE-2013-0419\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0419\n[ 67 ] CVE-2013-0422\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0422\n[ 68 ] CVE-2013-0423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0423\n[ 69 ] CVE-2013-0430\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0430\n[ 70 ] CVE-2013-0437\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0437\n[ 71 ] CVE-2013-0438\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0438\n[ 72 ] CVE-2013-0445\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0445\n[ 73 ] CVE-2013-0446\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0446\n[ 74 ] CVE-2013-0448\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0448\n[ 75 ] CVE-2013-0449\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0449\n[ 76 ] CVE-2013-0809\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809\n[ 77 ] CVE-2013-1473\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1473\n[ 78 ] CVE-2013-1479\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1479\n[ 79 ] CVE-2013-1481\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1481\n[ 80 ] CVE-2013-1484\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484\n[ 81 ] CVE-2013-1485\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485\n[ 82 ] CVE-2013-1486\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486\n[ 83 ] CVE-2013-1487\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1487\n[ 84 ] CVE-2013-1488\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488\n[ 85 ] CVE-2013-1491\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1491\n[ 86 ] CVE-2013-1493\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493\n[ 87 ] CVE-2013-1500\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500\n[ 88 ] CVE-2013-1518\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518\n[ 89 ] CVE-2013-1537\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537\n[ 90 ] CVE-2013-1540\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1540\n[ 91 ] CVE-2013-1557\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557\n[ 92 ] CVE-2013-1558\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1558\n[ 93 ] CVE-2013-1561\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1561\n[ 94 ] CVE-2013-1563\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1563\n[ 95 ] CVE-2013-1564\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1564\n[ 96 ] CVE-2013-1569\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569\n[ 97 ] CVE-2013-1571\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571\n[ 98 ] CVE-2013-2383\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383\n[ 99 ] CVE-2013-2384\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384\n[ 100 ] CVE-2013-2394\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2394\n[ 101 ] CVE-2013-2400\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2400\n[ 102 ] CVE-2013-2407\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407\n[ 103 ] CVE-2013-2412\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412\n[ 104 ] CVE-2013-2414\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2414\n[ 105 ] CVE-2013-2415\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415\n[ 106 ] CVE-2013-2416\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2416\n[ 107 ] CVE-2013-2417\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417\n[ 108 ] CVE-2013-2418\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2418\n[ 109 ] CVE-2013-2419\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419\n[ 110 ] CVE-2013-2420\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420\n[ 111 ] CVE-2013-2421\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421\n[ 112 ] CVE-2013-2422\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422\n[ 113 ] CVE-2013-2423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423\n[ 114 ] CVE-2013-2424\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424\n[ 115 ] CVE-2013-2425\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2425\n[ 116 ] CVE-2013-2426\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426\n[ 117 ] CVE-2013-2427\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2427\n[ 118 ] CVE-2013-2428\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2428\n[ 119 ] CVE-2013-2429\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429\n[ 120 ] CVE-2013-2430\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430\n[ 121 ] CVE-2013-2431\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431\n[ 122 ] CVE-2013-2432\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2432\n[ 123 ] CVE-2013-2433\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2433\n[ 124 ] CVE-2013-2434\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2434\n[ 125 ] CVE-2013-2435\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2435\n[ 126 ] CVE-2013-2436\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436\n[ 127 ] CVE-2013-2437\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2437\n[ 128 ] CVE-2013-2438\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2438\n[ 129 ] CVE-2013-2439\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2439\n[ 130 ] CVE-2013-2440\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2440\n[ 131 ] CVE-2013-2442\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2442\n[ 132 ] CVE-2013-2443\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443\n[ 133 ] CVE-2013-2444\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444\n[ 134 ] CVE-2013-2445\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445\n[ 135 ] CVE-2013-2446\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446\n[ 136 ] CVE-2013-2447\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447\n[ 137 ] CVE-2013-2448\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448\n[ 138 ] CVE-2013-2449\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449\n[ 139 ] CVE-2013-2450\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450\n[ 140 ] CVE-2013-2451\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451\n[ 141 ] CVE-2013-2452\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452\n[ 142 ] CVE-2013-2453\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453\n[ 143 ] CVE-2013-2454\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454\n[ 144 ] CVE-2013-2455\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455\n[ 145 ] CVE-2013-2456\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456\n[ 146 ] CVE-2013-2457\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457\n[ 147 ] CVE-2013-2458\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458\n[ 148 ] CVE-2013-2459\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459\n[ 149 ] CVE-2013-2460\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460\n[ 150 ] CVE-2013-2461\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461\n[ 151 ] CVE-2013-2462\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2462\n[ 152 ] CVE-2013-2463\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463\n[ 153 ] CVE-2013-2464\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2464\n[ 154 ] CVE-2013-2465\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465\n[ 155 ] CVE-2013-2466\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2466\n[ 156 ] CVE-2013-2467\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2467\n[ 157 ] CVE-2013-2468\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2468\n[ 158 ] CVE-2013-2469\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469\n[ 159 ] CVE-2013-2470\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470\n[ 160 ] CVE-2013-2471\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471\n[ 161 ] CVE-2013-2472\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472\n[ 162 ] CVE-2013-2473\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473\n[ 163 ] CVE-2013-3743\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3743\n[ 164 ] CVE-2013-3744\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3744\n[ 165 ] CVE-2013-3829\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829\n[ 166 ] CVE-2013-5772\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772\n[ 167 ] CVE-2013-5774\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774\n[ 168 ] CVE-2013-5775\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5775\n[ 169 ] CVE-2013-5776\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5776\n[ 170 ] CVE-2013-5777\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5777\n[ 171 ] CVE-2013-5778\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778\n[ 172 ] CVE-2013-5780\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780\n[ 173 ] CVE-2013-5782\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782\n[ 174 ] CVE-2013-5783\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783\n[ 175 ] CVE-2013-5784\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784\n[ 176 ] CVE-2013-5787\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5787\n[ 177 ] CVE-2013-5788\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5788\n[ 178 ] CVE-2013-5789\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5789\n[ 179 ] CVE-2013-5790\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790\n[ 180 ] CVE-2013-5797\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797\n[ 181 ] CVE-2013-5800\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800\n[ 182 ] CVE-2013-5801\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5801\n[ 183 ] CVE-2013-5802\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802\n[ 184 ] CVE-2013-5803\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803\n[ 185 ] CVE-2013-5804\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804\n[ 186 ] CVE-2013-5805\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805\n[ 187 ] CVE-2013-5806\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806\n[ 188 ] CVE-2013-5809\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809\n[ 189 ] CVE-2013-5810\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5810\n[ 190 ] CVE-2013-5812\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5812\n[ 191 ] CVE-2013-5814\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814\n[ 192 ] CVE-2013-5817\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817\n[ 193 ] CVE-2013-5818\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5818\n[ 194 ] CVE-2013-5819\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5819\n[ 195 ] CVE-2013-5820\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820\n[ 196 ] CVE-2013-5823\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823\n[ 197 ] CVE-2013-5824\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5824\n[ 198 ] CVE-2013-5825\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825\n[ 199 ] CVE-2013-5829\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829\n[ 200 ] CVE-2013-5830\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830\n[ 201 ] CVE-2013-5831\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5831\n[ 202 ] CVE-2013-5832\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5832\n[ 203 ] CVE-2013-5838\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5838\n[ 204 ] CVE-2013-5840\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840\n[ 205 ] CVE-2013-5842\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842\n[ 206 ] CVE-2013-5843\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5843\n[ 207 ] CVE-2013-5844\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5844\n[ 208 ] CVE-2013-5846\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5846\n[ 209 ] CVE-2013-5848\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5848\n[ 210 ] CVE-2013-5849\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849\n[ 211 ] CVE-2013-5850\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850\n[ 212 ] CVE-2013-5851\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851\n[ 213 ] CVE-2013-5852\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5852\n[ 214 ] CVE-2013-5854\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5854\n[ 215 ] CVE-2013-5870\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5870\n[ 216 ] CVE-2013-5878\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5878\n[ 217 ] CVE-2013-5887\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5887\n[ 218 ] CVE-2013-5888\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5888\n[ 219 ] CVE-2013-5889\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5889\n[ 220 ] CVE-2013-5893\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5893\n[ 221 ] CVE-2013-5895\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5895\n[ 222 ] CVE-2013-5896\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5896\n[ 223 ] CVE-2013-5898\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5898\n[ 224 ] CVE-2013-5899\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5899\n[ 225 ] CVE-2013-5902\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5902\n[ 226 ] CVE-2013-5904\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5904\n[ 227 ] CVE-2013-5905\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5905\n[ 228 ] CVE-2013-5906\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5906\n[ 229 ] CVE-2013-5907\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5907\n[ 230 ] CVE-2013-5910\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5910\n[ 231 ] CVE-2014-0368\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0368\n[ 232 ] CVE-2014-0373\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0373\n[ 233 ] CVE-2014-0375\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0375\n[ 234 ] CVE-2014-0376\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0376\n[ 235 ] CVE-2014-0382\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0382\n[ 236 ] CVE-2014-0385\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0385\n[ 237 ] CVE-2014-0387\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0387\n[ 238 ] CVE-2014-0403\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0403\n[ 239 ] CVE-2014-0408\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0408\n[ 240 ] CVE-2014-0410\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0410\n[ 241 ] CVE-2014-0411\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0411\n[ 242 ] CVE-2014-0415\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0415\n[ 243 ] CVE-2014-0416\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0416\n[ 244 ] CVE-2014-0417\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0417\n[ 245 ] CVE-2014-0418\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0418\n[ 246 ] CVE-2014-0422\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0422\n[ 247 ] CVE-2014-0423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0423\n[ 248 ] CVE-2014-0424\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0424\n[ 249 ] CVE-2014-0428\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0428\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n http://security.gentoo.org/glsa/glsa-201401-30.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2014 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. \n\nRelease Date: 2013-04-29\nLast Updated: 2013-04-29\n\nPotential Security Impact: Java Runtime Environment (JRE) security update\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nSeveral potential security vulnerabilities have been identified with HP\nService Manager for Windows, Linux, HP-UX, Solaris and AIX. \n\nReferences: CVE-2013-1487, CVE-2013-1486,\nCVE-2013-1484,CVE-2013-1485,CVE-2013-0169, CVE-2013-0437, CVE-2013-1478,\nCVE-2013-0442, CVE-2013-0445, CVE-2013-1480, CVE-2013-0441, CVE-2013-1475,\nCVE-2013-1476, CVE-2012-1541, CVE-2013-0446, CVE-2012-3342, CVE-2013-0450,\nCVE-2013-1479, CVE-2013-0425, CVE-2013-0426, CVE-2013-0428, CVE-2012-3213,\nCVE-2013-1481, CVE-2013-0436, CVE-2013-0439, CVE-2013-0447, CVE-2013-1472,\nCVE-2012-4301, CVE-2013-1477, CVE-2013-1482, CVE-2013-1483, CVE-2013-1474,\nCVE-2012-4305, CVE-2013-0444, CVE-2013-0429, CVE-2013-0419, CVE-2013-0423,\nCVE-2012-1543, CVE-2013-0351, CVE-2013-0430, CVE-2013-0432, CVE-2013-0449,\nCVE-2013-1473, CVE-2013-0435, CVE-2013-0434, CVE-2013-0409, CVE-2013-0431,\nCVE-2013-0427, CVE-2013-0448, CVE-2013-0433, CVE-2013-0424, CVE-2013-0440,\nCVE-2013-0438, CVE-2013-0443, CVE-2013-1489\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP Service Manager for Windows, Linux, HP-UX, Solaris and AIX v 9.30, v9.31\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2012-1541 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-1543 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2012-3213 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-3342 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-4301 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-4305 (AV:N/AC:M/Au:N/C:C/I:C/A:C) 9.3\nCVE-2013-0169 (AV:N/AC:H/Au:N/C:P/I:N/A:N) 2.6\nCVE-2013-0351 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2013-0409 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-0419 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-0423 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-0424 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-0425 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0426 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0427 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-0428 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0429 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-0430 (AV:L/AC:M/Au:N/C:C/I:C/A:C) 6.9\nCVE-2013-0431 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-0432 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4\nCVE-2013-0433 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-0434 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-0435 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-0436 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0437 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0438 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3\nCVE-2013-0439 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0440 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2013-0441 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0442 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0443 (AV:N/AC:H/Au:N/C:P/I:P/A:N) 4.0\nCVE-2013-0444 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-0445 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0446 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0447 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-0448 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-0449 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-0450 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1472 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1473 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-1474 (AV:N/AC:M/Au:N/C:C/I:C/A:C) 9.3\nCVE-2013-1475 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1476 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1477 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1478 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1479 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1480 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1481 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1482 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1483 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1484 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1485 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-1486 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1487 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1489 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided an update for Service Manager that updates the JRE to the\nlatest version, thus eliminating known JRE7-related security vulnerabilities. \nDownload and install the updates from The HP Software Support Online (SSO). \n\nSM 9.31P2 Server Windows Server 9.31.2004 p2\n http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00423\n\nHP Itanium Server 9.31.2004 p2\n http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00420\n\nLinux Server 9.31.2004 p2\n http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00421\n\nSolaris Server 9.31.2004 p2\n http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00422\n\nAIX Server 9.31.2004 p2\n http://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00419\n\nSM 9.31P2 Web Tier\nWeb Tier 9.31.2004 p2\nhttp://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00424\n\nSM 9.31P2 Windows Client\nWindows Client 9.31.2004 p2\nhttp://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00425\n\nSM 9.31P2 Knowledge Management\nSM 9.31P2 Knowledge Management\nhttp://support.openview.hp.com/selfsolve/document/FID/DOCUMENTUM_HPSM_00426\n\nHISTORY\nVersion:1 (rev.1) - 29 April 2013 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin List: A list of HP Security Bulletins, updated\nperiodically, is contained in HP Security Notice HPSN-2011-001:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c02964430\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttp://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2013 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits;damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Critical: java-1.6.0-sun security update\nAdvisory ID: RHSA-2013:0236-01\nProduct: Red Hat Enterprise Linux Extras\nAdvisory URL: https://rhn.redhat.com/errata/RHSA-2013-0236.html\nIssue date: 2013-02-04\nCVE Names: CVE-2012-1541 CVE-2012-3213 CVE-2012-3342 \n CVE-2013-0351 CVE-2013-0409 CVE-2013-0419 \n CVE-2013-0423 CVE-2013-0424 CVE-2013-0425 \n CVE-2013-0426 CVE-2013-0427 CVE-2013-0428 \n CVE-2013-0429 CVE-2013-0430 CVE-2013-0432 \n CVE-2013-0433 CVE-2013-0434 CVE-2013-0435 \n CVE-2013-0438 CVE-2013-0440 CVE-2013-0441 \n CVE-2013-0442 CVE-2013-0443 CVE-2013-0445 \n CVE-2013-0446 CVE-2013-0450 CVE-2013-1473 \n CVE-2013-1475 CVE-2013-1476 CVE-2013-1478 \n CVE-2013-1480 CVE-2013-1481 \n=====================================================================\n\n1. Summary:\n\nUpdated java-1.6.0-sun packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary. \n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64\nRed Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node Supplementary (v. 6) - x86_64\nRed Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64\nRed Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64\n\n3. \n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,\nCVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,\nCVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1480, CVE-2013-1481)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide Oracle Java 6 Update 39. All running instances of\nOracle Java must be restarted for the update to take effect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258\n\n5. Bugs fixed (http://bugzilla.redhat.com/):\n\n859140 - CVE-2013-0440 OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)\n860652 - CVE-2013-1475 OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)\n906813 - CVE-2013-0424 OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)\n906892 - CVE-2013-0435 OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)\n906894 - CVE-2013-1478 OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)\n906899 - CVE-2013-0442 OpenJDK: insufficient privilege checking issue (AWT, 7192977)\n906900 - CVE-2013-0445 OpenJDK: insufficient privilege checking issue (AWT, 8001057)\n906904 - CVE-2013-1480 OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)\n906911 - CVE-2013-0450 OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)\n906914 - CVE-2012-1541 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)\n906916 - CVE-2013-0446 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)\n906917 - CVE-2012-3342 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)\n906918 - CVE-2013-0419 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)\n906921 - CVE-2013-0423 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)\n906923 - CVE-2013-0351 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)\n906930 - CVE-2013-0430 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)\n906933 - CVE-2013-1473 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)\n906935 - CVE-2013-0438 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)\n907207 - CVE-2013-0428 OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)\n907219 - CVE-2013-0432 OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)\n907223 - CVE-2012-3213 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)\n907224 - CVE-2013-1481 Oracle JDK: unspecified vulnerability fixed in 6u39 (Sound)\n907226 - CVE-2013-0409 Oracle JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)\n907340 - CVE-2013-0443 OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)\n907344 - CVE-2013-0425 OpenJDK: logging insufficient access control checks (Libraries, 6664509)\n907346 - CVE-2013-0426 OpenJDK: logging insufficient access control checks (Libraries, 6664528)\n907453 - CVE-2013-0434 OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)\n907455 - CVE-2013-0427 OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)\n907456 - CVE-2013-0433 OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)\n907457 - CVE-2013-1476 OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)\n907458 - CVE-2013-0441 OpenJDK: missing serialization restriction (CORBA, 7201066)\n907460 - CVE-2013-0429 OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop Supplementary (v. 5):\n\ni386:\njava-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.i586.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\n\nRed Hat Enterprise Linux Server Supplementary (v. 5):\n\ni386:\njava-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.i586.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.i586.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.4.el5_9.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop Supplementary (v. 6):\n\ni386:\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.i686.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Supplementary (v. 6):\n\nx86_64:\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux Server Supplementary (v. 6):\n\ni386:\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.i686.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Supplementary (v. 6):\n\ni386:\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.i686.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.i686.rpm\njava-1.6.0-sun-devel-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.39-1jpp.1.el6_3.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2012-1541.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-3213.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-3342.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0351.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0409.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0419.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0423.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0424.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0425.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0426.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0427.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0428.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0429.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0430.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0432.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0433.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0434.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0435.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0438.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0440.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0441.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0442.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0443.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0445.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0446.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0450.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1473.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1475.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1476.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1478.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1480.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1481.html\nhttps://access.redhat.com/security/updates/classification/#critical\nhttp://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2013 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.4 (GNU/Linux)\n\niD8DBQFREE7WXlSAg2UNWIIRAuWTAJ4g2iIk0XnUEpbIXz6nDgDjaHxz7ACbBcjy\ngqkoqFew2BZDYA/n817qYO8=\n=m5pJ\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. ----------------------------------------------------------------------\n\nThe final version of the CSI 6.0 has been released. \nFind out why this is not just another Patch Management solution: http://secunia.com/blog/325/\n\n----------------------------------------------------------------------\n\nTITLE:\nOracle Java Multiple Vulnerabilities\n\nSECUNIA ADVISORY ID:\nSA52064\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/52064/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=52064\n\nRELEASE DATE:\n2013-02-02\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/52064/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/52064/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=52064\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nMultiple vulnerabilities have been reported in Oracle Java, which can\nbe exploited by malicious local users to gain escalated privileges and\nby malicious people to disclose certain sensitive information,\nmanipulate certain data, cause a DoS (Denial of Service), and\ncompromise a vulnerable system. \n\n1) An unspecified error in the 2D component of the client and server\ndeployment can be exploited to potentially execute arbitrary code. \n\n2) An unspecified error in the 2D component of the client and server\ndeployment can be exploited to potentially execute arbitrary code. \n\n3) An unspecified error in the AWT component of the client deployment\ncan be exploited to potentially execute arbitrary code. \n\n4) An unspecified error in the AWT component of the client deployment\ncan be exploited to potentially execute arbitrary code. \n\n5) An unspecified error in the AWT component of the client and server\ndeployment can be exploited to potentially execute arbitrary code. \n\n6) An unspecified error in the CORBA component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n7) An unspecified error in the CORBA component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n8) An unspecified error in the CORBA component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n9) An unspecified error in the Deployment component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n10) An unspecified error in the Deployment component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n11) An unspecified error in the Deployment component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n12) An unspecified error in the JMX component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n13) An unspecified error in the JavaFX component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n14) An unspecified error in the Libraries component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n15) An unspecified error in the Libraries component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n16) An unspecified error in the Libraries component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n17) An unspecified error in the Scripting component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n18) An unspecified error in the Sound component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n19) An unspecified error in the Beans component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n20) An unspecified error in the CORBA component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n21) An unspecified error in the Deployment component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n22) An unspecified error in the Deployment component of the client\ndeployment can be exploited to potentially execute arbitrary code. \n\n23) An unspecified error in the Deployment component of the client\ndeployment can be exploited to disclose and manipulate certain data\nand cause a DoS. \n\n24) An unspecified error in the Install component of the client\ndeployment can be exploited by a local user to gain escalated\nprivileges. \n\n25) An unspecified error in the AWT component of the client\ndeployment can be exploited to disclose and manipulate certain data. \n\n26) An unspecified error in the Deployment component of the client\ndeployment can be exploited to disclose certain data. \n\n27) An unspecified error in the Deployment component of the client\ndeployment can be exploited to manipulate certain data. \n\n28) An unspecified error in the JAX-WS component of the client\ndeployment can be exploited to disclose certain data. \n\n29) An unspecified error in the JAXP component of the client\ndeployment can be exploited to disclose certain data. \n\n30) An unspecified error in the JMX component of the client\ndeployment can be exploited to disclose certain data. \n\n31) An unspecified error in the JMX component of the client\ndeployment can be exploited to disclose certain data. \n\n32) An unspecified error in the Libraries component of the client\ndeployment can be exploited to manipulate certain data. \n\n33) An unspecified error in the Libraries component of the client\ndeployment can be exploited to manipulate certain data. \n\n34) An unspecified error in the Networking component of the client\ndeployment can be exploited to manipulate certain data. \n\n35) An unspecified error in the RMI component of the client\ndeployment can be exploited to manipulate certain data. \n\n36) An unspecified error in the JSSE component of the server\ndeployment can be exploited via SSL/TLS to cause a DoS. \n\n37) An unspecified error in the Deployment component of the client\ndeployment can be exploited to disclose certain data. \n\n38) An unspecified error in the JSSE component of the client\ndeployment can be exploited via SSL/TLS to disclose and manipulate\ncertain data. \n\nThe vulnerabilities are reported in the following products:\n* JDK and JRE 7 Update 11 and earlier. \n* JDK and JRE 6 Update 38 and earlier. \n* JDK and JRE 5.0 Update 38 and earlier. \n* SDK and JRE 1.4.2_40 and earlier. \n\nSOLUTION:\nApply updates. \n\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nPROVIDED AND/OR DISCOVERED BY:\nOne of the vulnerabilities is reported as a 0-day. It is currently\nunclear who reported the remaining vulnerabilities as the Oracle Jave\nSE Critical Patch Update for February 2013 only provides a bundled\nlist of credits. This section will be updated when/if the original\nreporter provides more information. \n\nORIGINAL ADVISORY:\nhttp://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html\nhttp://www.oracle.com/technetwork/topics/security/javacpufeb2013verbose-1841196.html\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2013-0430"
},
{
"db": "CERT/CC",
"id": "VU#858729"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-001398"
},
{
"db": "BID",
"id": "57722"
},
{
"db": "PACKETSTORM",
"id": "123874"
},
{
"db": "PACKETSTORM",
"id": "120334"
},
{
"db": "PACKETSTORM",
"id": "124943"
},
{
"db": "PACKETSTORM",
"id": "121464"
},
{
"db": "PACKETSTORM",
"id": "120030"
},
{
"db": "PACKETSTORM",
"id": "124431"
},
{
"db": "PACKETSTORM",
"id": "120009"
},
{
"db": "PACKETSTORM",
"id": "120031"
}
],
"trust": 3.33
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "CERT/CC",
"id": "VU#858729",
"trust": 2.9
},
{
"db": "NVD",
"id": "CVE-2013-0430",
"trust": 2.8
},
{
"db": "USCERT",
"id": "TA13-032A",
"trust": 1.8
},
{
"db": "BID",
"id": "57722",
"trust": 1.3
},
{
"db": "JVNDB",
"id": "JVNDB-2013-001398",
"trust": 0.8
},
{
"db": "ICS CERT",
"id": "ICSA-17-213-02",
"trust": 0.3
},
{
"db": "PACKETSTORM",
"id": "123874",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "120334",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "124943",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "121464",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "120030",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "124431",
"trust": 0.1
},
{
"db": "SECUNIA",
"id": "52064",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "120009",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "120031",
"trust": 0.1
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#858729"
},
{
"db": "BID",
"id": "57722"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-001398"
},
{
"db": "PACKETSTORM",
"id": "123874"
},
{
"db": "PACKETSTORM",
"id": "120334"
},
{
"db": "PACKETSTORM",
"id": "124943"
},
{
"db": "PACKETSTORM",
"id": "121464"
},
{
"db": "PACKETSTORM",
"id": "120030"
},
{
"db": "PACKETSTORM",
"id": "124431"
},
{
"db": "PACKETSTORM",
"id": "120009"
},
{
"db": "PACKETSTORM",
"id": "120031"
},
{
"db": "NVD",
"id": "CVE-2013-0430"
}
]
},
"id": "VAR-201302-0232",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 1.0
},
"last_update_date": "2024-11-28T21:37:14.867000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "HPSBMU02874 SSRT101184",
"trust": 0.8,
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c03748879"
},
{
"title": "Oracle Java SE Critical Patch Update Advisory - February 2013",
"trust": 0.8,
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"title": "Text Form of Oracle Java SE Critical Patch Update - February 2013 Risk Matrices",
"trust": 0.8,
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013verbose-1841196.html"
},
{
"title": "RHSA-2013:0236",
"trust": 0.8,
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"title": "RHSA-2013:0237",
"trust": 0.8,
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"title": "February 2013 Critical Patch Update for Java SE Released",
"trust": 0.8,
"url": "https://blogs.oracle.com/security/entry/february_2013_critical_patch_update"
},
{
"title": "Oracle Corporation Java\u30d7\u30e9\u30b0\u30a4\u30f3\u306e\u8106\u5f31\u6027\u306b\u95a2\u3059\u308b\u304a\u77e5\u3089\u305b",
"trust": 0.8,
"url": "http://www.fmworld.net/biz/common/oracle/20130204.html"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-001398"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-noinfo",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2013-0430"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.4,
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"trust": 2.1,
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"trust": 1.8,
"url": "http://www.us-cert.gov/cas/techalerts/ta13-032a.html"
},
{
"trust": 1.1,
"url": "http://rhn.redhat.com/errata/rhsa-2013-0236.html"
},
{
"trust": 1.1,
"url": "http://rhn.redhat.com/errata/rhsa-2013-0237.html"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"trust": 1.0,
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16600"
},
{
"trust": 1.0,
"url": "http://www.securityfocus.com/bid/57722"
},
{
"trust": 0.9,
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013verbose-1841196.html"
},
{
"trust": 0.8,
"url": "http://taosecurity.blogspot.com/2012/11/do-devs-care-about-java-insecurity.html?showcomment=1353874245992#c4794680666510382012"
},
{
"trust": 0.8,
"url": "http://codeascraft.etsy.com/2013/03/18/java-not-even-once/"
},
{
"trust": 0.8,
"url": "http://blogs.technet.com/b/srd/archive/2013/05/29/java-when-you-cannot-let-go.aspx"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-0430"
},
{
"trust": 0.8,
"url": "http://www.ipa.go.jp/security/ciadr/vul/20130204-jre.html"
},
{
"trust": 0.8,
"url": "https://www.jpcert.or.jp/at/2013/at130007.txt"
},
{
"trust": 0.8,
"url": "http://jvn.jp/cert/jvnta13-032a"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-0430"
},
{
"trust": 0.7,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1541"
},
{
"trust": 0.6,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21650822"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0429"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-3342"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0428"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0351"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0430"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0409"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0419"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-3213"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0426"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0440"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0423"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0425"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0433"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0435"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0438"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0434"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0432"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0427"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0424"
},
{
"trust": 0.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0437"
},
{
"trust": 0.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0431"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21650623"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03748879"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21644918"
},
{
"trust": 0.3,
"url": "http://www.oracle.com/technetwork/java/index.html"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24033920"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24033922"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24031555"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24034621"
},
{
"trust": 0.3,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-213-02"
},
{
"trust": 0.3,
"url": "http://prod.lists.apple.com/archives/security-announce/2013/feb/msg00000.html"
},
{
"trust": 0.3,
"url": "https://downloads.avaya.com/css/p8/documents/100171276"
},
{
"trust": 0.3,
"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03748879"
},
{
"trust": 0.3,
"url": "https://downloads.avaya.com/css/p8/documents/100169783"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=swg21628927"
},
{
"trust": 0.3,
"url": "http://www.xerox.com/download/security/security-bulletin/1683f-4d960e4b16bb2/cert_xrx13-004_v1.01.pdf"
},
{
"trust": 0.3,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_00424"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0169"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0436"
},
{
"trust": 0.3,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_00422"
},
{
"trust": 0.3,
"url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
},
{
"trust": 0.3,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_00426"
},
{
"trust": 0.3,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_00420"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-4301"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1543"
},
{
"trust": 0.3,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_00421"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-4305"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0439"
},
{
"trust": 0.3,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_00425"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0442"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0446"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0441"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0443"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0445"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsm_00486"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsm_00488"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsm_00489"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsm_00484"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsm_00482"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsm_00483"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_00423"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_00419"
},
{
"trust": 0.2,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
},
{
"trust": 0.2,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsm_00487"
},
{
"trust": 0.2,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsm_00485"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0450"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-1475"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0444"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0430.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0440.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2012-3213.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0427.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-1476.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0433.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-1475.html"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0445.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0432.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0446.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0428.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-1480.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2012-3342.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0425.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0442.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0429.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0450.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0419.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0424.html"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/team/contact/"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0409.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2012-1541.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-1473.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0423.html"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/knowledge/articles/11258"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0443.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0438.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0435.html"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/team/key/#package"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0434.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-1478.html"
},
{
"trust": 0.2,
"url": "http://bugzilla.redhat.com/):"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0351.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0441.html"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0426.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-1481"
},
{
"trust": 0.1,
"url": "http://www.ubuntu.com/usn/usn-1724-1"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.1-2ubuntu0.12.04.2"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0448"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.1-2ubuntu0.10.04.2"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.1-2ubuntu0.11.10.2"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/openjdk-7/7u13-2.3.6-0ubuntu0.12.10.1"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-1480"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-0449"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-1478"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-1476"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0507"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5870"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0503"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0419"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2469"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2443"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1717"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1716"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0505"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1518"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2419"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1558"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3829"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5818"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1541"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5829"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5804"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1485"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5889"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0449"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2440"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5806"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5087"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2422"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1540"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0385"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2427"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2437"
},
{
"trust": 0.1,
"url": "http://creativecommons.org/licenses/by-sa/2.5"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0445"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0500"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5075"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2468"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3743"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0422"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0501"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2426"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5893"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3159"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3174"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5084"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5888"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1711"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0437"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2461"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0373"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0351"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1563"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5789"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5820"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0504"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1682"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2470"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0547"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5899"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2451"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5801"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5823"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0423"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2459"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5832"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5848"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0428"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2460"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1713"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0415"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5784"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1719"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1533"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2400"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1564"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3143"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5830"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0448"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5800"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0438"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5810"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5905"
},
{
"trust": 0.1,
"url": "http://security.gentoo.org/glsa/glsa-201401-30.xml"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5904"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2456"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5803"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5831"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5086"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2452"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2383"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2447"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2423"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5778"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0422"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2445"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2450"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5780"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5073"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1493"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2446"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3744"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5854"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2394"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5069"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-5035"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0498"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1500"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5852"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5777"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0547"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5850"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0499"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2384"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0499"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1557"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0409"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1532"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2428"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2453"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0401"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5085"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2407"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2421"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4681"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2462"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0423"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2429"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5083"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0375"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2439"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5068"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2416"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3136"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0376"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5824"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3342"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5776"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5071"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1531"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0417"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0504"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1723"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0497"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5819"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0507"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1722"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5774"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5782"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5895"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2466"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1725"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5790"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5805"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0403"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5802"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0446"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1719"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5849"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-5035"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2448"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2418"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2458"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5788"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0416"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5825"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0506"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1484"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0424"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2430"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1473"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2415"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5887"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0418"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3216"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1718"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5772"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0410"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0368"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1717"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2425"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5074"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0500"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2454"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2444"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5072"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2436"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1722"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4416"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1537"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5902"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2432"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0387"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0502"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1716"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1533"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2449"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0503"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2457"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2438"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1721"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0382"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0169"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5812"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3563"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0809"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5077"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3213"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5846"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1718"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0497"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1723"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1726"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1571"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5775"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5787"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5081"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5898"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5840"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1531"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5851"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2465"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1481"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2431"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-3563"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2433"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2473"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5844"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5906"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5783"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1711"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2463"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1532"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1561"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2412"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2435"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1491"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5809"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5910"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2420"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1487"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1713"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5907"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0501"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2417"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2471"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5896"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5843"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5067"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1682"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0498"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2414"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2424"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5076"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2467"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5842"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5079"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0411"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1721"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1569"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1724"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5797"
},
{
"trust": 0.1,
"url": "http://security.gentoo.org/"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5070"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1479"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1486"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2434"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2442"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1488"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2464"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2472"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0502"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5878"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0505"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5817"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5814"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0408"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0402"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0506"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5838"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0430"
},
{
"trust": 0.1,
"url": "https://bugs.gentoo.org."
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2455"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5088"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5089"
},
{
"trust": 0.1,
"url": "http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
},
{
"trust": 0.1,
"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2013-1481.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-1473"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/fid/documentum_hpsm_0041"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsc_00282"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsc_00280"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsc_00284"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsc_00283"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsc_00286"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsc_00281"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsc_00285"
},
{
"trust": 0.1,
"url": "http://support.openview.hp.com/selfsolve/document/lid/hpsc_00279"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/52064/#comments"
},
{
"trust": 0.1,
"url": "http://secunia.com/vulnerability_intelligence/"
},
{
"trust": 0.1,
"url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=52064"
},
{
"trust": 0.1,
"url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/secunia_security_advisories/"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/52064/"
},
{
"trust": 0.1,
"url": "http://secunia.com/vulnerability_scanning/personal/"
},
{
"trust": 0.1,
"url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
},
{
"trust": 0.1,
"url": "http://secunia.com/blog/325/"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/about_secunia_advisories/"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2013-1489.html"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0431.html"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0448.html"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0437.html"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0444.html"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2013-1479.html"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2013-0449.html"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#858729"
},
{
"db": "BID",
"id": "57722"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-001398"
},
{
"db": "PACKETSTORM",
"id": "123874"
},
{
"db": "PACKETSTORM",
"id": "120334"
},
{
"db": "PACKETSTORM",
"id": "124943"
},
{
"db": "PACKETSTORM",
"id": "121464"
},
{
"db": "PACKETSTORM",
"id": "120030"
},
{
"db": "PACKETSTORM",
"id": "124431"
},
{
"db": "PACKETSTORM",
"id": "120009"
},
{
"db": "PACKETSTORM",
"id": "120031"
},
{
"db": "NVD",
"id": "CVE-2013-0430"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CERT/CC",
"id": "VU#858729"
},
{
"db": "BID",
"id": "57722"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-001398"
},
{
"db": "PACKETSTORM",
"id": "123874"
},
{
"db": "PACKETSTORM",
"id": "120334"
},
{
"db": "PACKETSTORM",
"id": "124943"
},
{
"db": "PACKETSTORM",
"id": "121464"
},
{
"db": "PACKETSTORM",
"id": "120030"
},
{
"db": "PACKETSTORM",
"id": "124431"
},
{
"db": "PACKETSTORM",
"id": "120009"
},
{
"db": "PACKETSTORM",
"id": "120031"
},
{
"db": "NVD",
"id": "CVE-2013-0430"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-02-01T00:00:00",
"db": "CERT/CC",
"id": "VU#858729"
},
{
"date": "2013-02-01T00:00:00",
"db": "BID",
"id": "57722"
},
{
"date": "2013-02-05T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-001398"
},
{
"date": "2013-11-01T13:37:00",
"db": "PACKETSTORM",
"id": "123874"
},
{
"date": "2013-02-15T05:00:41",
"db": "PACKETSTORM",
"id": "120334"
},
{
"date": "2014-01-27T18:30:13",
"db": "PACKETSTORM",
"id": "124943"
},
{
"date": "2013-04-30T21:07:53",
"db": "PACKETSTORM",
"id": "121464"
},
{
"date": "2013-02-05T01:09:08",
"db": "PACKETSTORM",
"id": "120030"
},
{
"date": "2013-12-14T11:11:00",
"db": "PACKETSTORM",
"id": "124431"
},
{
"date": "2013-02-04T10:48:27",
"db": "PACKETSTORM",
"id": "120009"
},
{
"date": "2013-02-05T01:09:24",
"db": "PACKETSTORM",
"id": "120031"
},
{
"date": "2013-02-02T00:55:01.803000",
"db": "NVD",
"id": "CVE-2013-0430"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-06-14T00:00:00",
"db": "CERT/CC",
"id": "VU#858729"
},
{
"date": "2017-08-03T12:09:00",
"db": "BID",
"id": "57722"
},
{
"date": "2013-06-14T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-001398"
},
{
"date": "2024-11-21T01:47:31.980000",
"db": "NVD",
"id": "CVE-2013-0430"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "network",
"sources": [
{
"db": "BID",
"id": "57722"
}
],
"trust": 0.3
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Oracle Java contains multiple vulnerabilities",
"sources": [
{
"db": "CERT/CC",
"id": "VU#858729"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Unknown",
"sources": [
{
"db": "BID",
"id": "57722"
}
],
"trust": 0.3
}
}
CERTFR-2017-AVI-228
Vulnerability from certfr_avis
De multiples vulnérabilités ont été corrigées dans SCADA Schneider Electric Trio TView. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Trio TView Software, TBUMPROG-TVIEW versions 3.27.0 et antérieures
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eTrio TView Software, TBUMPROG-TVIEW versions 3.27.0 et ant\u00e9rieures\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-4681",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-4681"
},
{
"name": "CVE-2012-5081",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5081"
},
{
"name": "CVE-2011-3550",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3550"
},
{
"name": "CVE-2011-3557",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3557"
},
{
"name": "CVE-2011-3558",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3558"
},
{
"name": "CVE-2011-3546",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3546"
},
{
"name": "CVE-2011-3545",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3545"
},
{
"name": "CVE-2011-3551",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3551"
},
{
"name": "CVE-2011-3547",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3547"
},
{
"name": "CVE-2011-3561",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3561"
},
{
"name": "CVE-2011-3516",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3516"
},
{
"name": "CVE-2011-3552",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3552"
},
{
"name": "CVE-2011-3521",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3521"
},
{
"name": "CVE-2011-3556",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3556"
},
{
"name": "CVE-2011-3549",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3549"
},
{
"name": "CVE-2011-3560",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3560"
},
{
"name": "CVE-2011-3553",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3553"
},
{
"name": "CVE-2011-3554",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3554"
},
{
"name": "CVE-2011-3544",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3544"
},
{
"name": "CVE-2011-3548",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3548"
},
{
"name": "CVE-2011-3563",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3563"
},
{
"name": "CVE-2012-0502",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0502"
},
{
"name": "CVE-2012-0499",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0499"
},
{
"name": "CVE-2012-0501",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0501"
},
{
"name": "CVE-2012-0504",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0504"
},
{
"name": "CVE-2012-0507",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0507"
},
{
"name": "CVE-2012-0503",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0503"
},
{
"name": "CVE-2012-0500",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0500"
},
{
"name": "CVE-2012-0505",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0505"
},
{
"name": "CVE-2012-0506",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0506"
},
{
"name": "CVE-2012-0497",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0497"
},
{
"name": "CVE-2012-0498",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0498"
},
{
"name": "CVE-2012-0551",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0551"
},
{
"name": "CVE-2012-1721",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1721"
},
{
"name": "CVE-2012-1716",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1716"
},
{
"name": "CVE-2012-1717",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1717"
},
{
"name": "CVE-2012-1724",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1724"
},
{
"name": "CVE-2012-1718",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1718"
},
{
"name": "CVE-2012-1725",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1725"
},
{
"name": "CVE-2012-1720",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1720"
},
{
"name": "CVE-2012-1723",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1723"
},
{
"name": "CVE-2012-1713",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1713"
},
{
"name": "CVE-2012-1711",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1711"
},
{
"name": "CVE-2012-1719",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1719"
},
{
"name": "CVE-2012-1722",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1722"
},
{
"name": "CVE-2012-5071",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5071"
},
{
"name": "CVE-2012-5077",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5077"
},
{
"name": "CVE-2012-5072",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5072"
},
{
"name": "CVE-2012-5073",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5073"
},
{
"name": "CVE-2012-5083",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5083"
},
{
"name": "CVE-2012-5085",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5085"
},
{
"name": "CVE-2012-5086",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5086"
},
{
"name": "CVE-2012-1533",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1533"
},
{
"name": "CVE-2012-1531",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1531"
},
{
"name": "CVE-2012-3159",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3159"
},
{
"name": "CVE-2012-4416",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-4416"
},
{
"name": "CVE-2012-3143",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3143"
},
{
"name": "CVE-2012-5069",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5069"
},
{
"name": "CVE-2012-5068",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5068"
},
{
"name": "CVE-2012-5084",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5084"
},
{
"name": "CVE-2012-1532",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1532"
},
{
"name": "CVE-2012-5089",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5089"
},
{
"name": "CVE-2012-5079",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5079"
},
{
"name": "CVE-2012-3216",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3216"
},
{
"name": "CVE-2012-5075",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5075"
},
{
"name": "CVE-2013-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0423"
},
{
"name": "CVE-2013-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0432"
},
{
"name": "CVE-2012-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3213"
},
{
"name": "CVE-2012-3342",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3342"
},
{
"name": "CVE-2013-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0351"
},
{
"name": "CVE-2013-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0429"
},
{
"name": "CVE-2013-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0442"
},
{
"name": "CVE-2013-0427",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0427"
},
{
"name": "CVE-2013-1478",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1478"
},
{
"name": "CVE-2013-1481",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1481"
},
{
"name": "CVE-2013-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0446"
},
{
"name": "CVE-2013-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0445"
},
{
"name": "CVE-2013-0425",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0425"
},
{
"name": "CVE-2013-1475",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1475"
},
{
"name": "CVE-2013-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0426"
},
{
"name": "CVE-2013-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0428"
},
{
"name": "CVE-2013-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0435"
},
{
"name": "CVE-2013-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0434"
},
{
"name": "CVE-2013-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1473"
},
{
"name": "CVE-2013-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0433"
},
{
"name": "CVE-2013-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0450"
},
{
"name": "CVE-2013-0409",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0409"
},
{
"name": "CVE-2013-1476",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1476"
},
{
"name": "CVE-2013-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0419"
},
{
"name": "CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"name": "CVE-2013-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0424"
},
{
"name": "CVE-2013-1480",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1480"
},
{
"name": "CVE-2013-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0441"
},
{
"name": "CVE-2013-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0438"
},
{
"name": "CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"name": "CVE-2013-0430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0430"
},
{
"name": "CVE-2013-1479",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1479"
},
{
"name": "CVE-2012-1541",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1541"
},
{
"name": "CVE-2013-1486",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1486"
},
{
"name": "CVE-2013-1487",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1487"
},
{
"name": "CVE-2013-0809",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0809"
},
{
"name": "CVE-2013-1493",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1493"
},
{
"name": "CVE-2013-2417",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2417"
},
{
"name": "CVE-2013-2432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2432"
},
{
"name": "CVE-2013-1537",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1537"
},
{
"name": "CVE-2013-1518",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1518"
},
{
"name": "CVE-2013-1558",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1558"
},
{
"name": "CVE-2013-2430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2430"
},
{
"name": "CVE-2013-2439",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2439"
},
{
"name": "CVE-2013-2440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2440"
},
{
"name": "CVE-2013-1563",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1563"
},
{
"name": "CVE-2013-2420",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2420"
},
{
"name": "CVE-2013-1557",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1557"
},
{
"name": "CVE-2013-2384",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2384"
},
{
"name": "CVE-2013-2394",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2394"
},
{
"name": "CVE-2013-2418",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2418"
},
{
"name": "CVE-2013-2419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2419"
},
{
"name": "CVE-2013-1569",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1569"
},
{
"name": "CVE-2013-2429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2429"
},
{
"name": "CVE-2013-1540",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1540"
},
{
"name": "CVE-2013-2435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2435"
},
{
"name": "CVE-2013-2424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2424"
},
{
"name": "CVE-2013-2422",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2422"
},
{
"name": "CVE-2013-2383",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2383"
},
{
"name": "CVE-2013-2433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2433"
},
{
"name": "CVE-2013-2437",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2437"
},
{
"name": "CVE-2013-2448",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2448"
},
{
"name": "CVE-2013-2461",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2461"
},
{
"name": "CVE-2013-2469",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2469"
},
{
"name": "CVE-2013-2442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2442"
},
{
"name": "CVE-2013-2407",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2407"
},
{
"name": "CVE-2013-2447",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2447"
},
{
"name": "CVE-2013-2445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2445"
},
{
"name": "CVE-2013-2454",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2454"
},
{
"name": "CVE-2013-2463",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2463"
},
{
"name": "CVE-2013-2472",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2472"
},
{
"name": "CVE-2013-2444",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2444"
},
{
"name": "CVE-2013-2464",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2464"
},
{
"name": "CVE-2013-1571",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1571"
},
{
"name": "CVE-2013-2466",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2466"
},
{
"name": "CVE-2013-2457",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2457"
},
{
"name": "CVE-2013-2471",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2471"
},
{
"name": "CVE-2013-3743",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3743"
},
{
"name": "CVE-2013-2412",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2412"
},
{
"name": "CVE-2013-2446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2446"
},
{
"name": "CVE-2013-1500",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1500"
},
{
"name": "CVE-2013-2456",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2456"
},
{
"name": "CVE-2013-2453",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2453"
},
{
"name": "CVE-2013-2443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2443"
},
{
"name": "CVE-2013-2473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2473"
},
{
"name": "CVE-2013-2465",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2465"
},
{
"name": "CVE-2013-2468",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2468"
},
{
"name": "CVE-2013-2452",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2452"
},
{
"name": "CVE-2013-2459",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2459"
},
{
"name": "CVE-2013-2455",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2455"
},
{
"name": "CVE-2013-2470",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2470"
},
{
"name": "CVE-2013-2450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2450"
},
{
"name": "CVE-2013-2451",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2451"
},
{
"name": "CVE-2013-5801",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5801"
},
{
"name": "CVE-2013-5829",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5829"
},
{
"name": "CVE-2013-5819",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5819"
},
{
"name": "CVE-2013-5840",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5840"
},
{
"name": "CVE-2013-5830",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5830"
},
{
"name": "CVE-2013-5774",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5774"
},
{
"name": "CVE-2013-5818",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5818"
},
{
"name": "CVE-2013-5831",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5831"
},
{
"name": "CVE-2013-5772",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5772"
},
{
"name": "CVE-2013-5814",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5814"
},
{
"name": "CVE-2013-5843",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5843"
},
{
"name": "CVE-2013-5809",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5809"
},
{
"name": "CVE-2013-5817",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5817"
},
{
"name": "CVE-2013-5824",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5824"
},
{
"name": "CVE-2013-5787",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5787"
},
{
"name": "CVE-2013-5784",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5784"
},
{
"name": "CVE-2013-5783",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5783"
},
{
"name": "CVE-2013-3829",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3829"
},
{
"name": "CVE-2013-5790",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5790"
},
{
"name": "CVE-2013-5802",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5802"
},
{
"name": "CVE-2013-5825",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5825"
},
{
"name": "CVE-2013-5849",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5849"
},
{
"name": "CVE-2013-5820",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5820"
},
{
"name": "CVE-2013-5850",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5850"
},
{
"name": "CVE-2013-5842",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5842"
},
{
"name": "CVE-2013-5780",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5780"
},
{
"name": "CVE-2013-5789",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5789"
},
{
"name": "CVE-2013-5852",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5852"
},
{
"name": "CVE-2013-5804",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5804"
},
{
"name": "CVE-2013-5832",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5832"
},
{
"name": "CVE-2013-5776",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5776"
},
{
"name": "CVE-2013-5797",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5797"
},
{
"name": "CVE-2013-5803",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5803"
},
{
"name": "CVE-2013-5778",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5778"
},
{
"name": "CVE-2013-5812",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5812"
},
{
"name": "CVE-2013-5782",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5782"
},
{
"name": "CVE-2013-5823",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5823"
},
{
"name": "CVE-2013-5888",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5888"
},
{
"name": "CVE-2014-0410",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0410"
},
{
"name": "CVE-2014-0422",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0422"
},
{
"name": "CVE-2014-0368",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0368"
},
{
"name": "CVE-2014-0417",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0417"
},
{
"name": "CVE-2014-0373",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0373"
},
{
"name": "CVE-2014-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0423"
},
{
"name": "CVE-2014-0375",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0375"
},
{
"name": "CVE-2013-5907",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5907"
},
{
"name": "CVE-2014-0416",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0416"
},
{
"name": "CVE-2014-0403",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0403"
},
{
"name": "CVE-2013-5887",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5887"
},
{
"name": "CVE-2014-0411",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0411"
},
{
"name": "CVE-2014-0415",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0415"
},
{
"name": "CVE-2014-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0424"
},
{
"name": "CVE-2013-5905",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5905"
},
{
"name": "CVE-2014-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0428"
},
{
"name": "CVE-2013-5898",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5898"
},
{
"name": "CVE-2013-5899",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5899"
},
{
"name": "CVE-2013-5889",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5889"
},
{
"name": "CVE-2013-5906",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5906"
},
{
"name": "CVE-2013-5902",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5902"
},
{
"name": "CVE-2013-5910",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5910"
},
{
"name": "CVE-2013-5884",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5884"
},
{
"name": "CVE-2014-0387",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0387"
},
{
"name": "CVE-2013-5878",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5878"
},
{
"name": "CVE-2014-0418",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0418"
},
{
"name": "CVE-2014-0376",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0376"
},
{
"name": "CVE-2013-5896",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5896"
},
{
"name": "CVE-2014-0457",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0457"
},
{
"name": "CVE-2014-0452",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0452"
},
{
"name": "CVE-2014-0453",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0453"
},
{
"name": "CVE-2014-2423",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2423"
},
{
"name": "CVE-2014-2409",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2409"
},
{
"name": "CVE-2014-2427",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2427"
},
{
"name": "CVE-2014-2412",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2412"
},
{
"name": "CVE-2014-2401",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2401"
},
{
"name": "CVE-2014-0451",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0451"
},
{
"name": "CVE-2014-0458",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0458"
},
{
"name": "CVE-2014-2403",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2403"
},
{
"name": "CVE-2014-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2398"
},
{
"name": "CVE-2014-2420",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2420"
},
{
"name": "CVE-2014-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0446"
},
{
"name": "CVE-2014-2421",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2421"
},
{
"name": "CVE-2014-0449",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0449"
},
{
"name": "CVE-2014-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0429"
},
{
"name": "CVE-2014-0461",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0461"
},
{
"name": "CVE-2014-2414",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2414"
},
{
"name": "CVE-2014-0460",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0460"
},
{
"name": "CVE-2014-2428",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2428"
},
{
"name": "CVE-2014-0107",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0107"
},
{
"name": "CVE-2014-4262",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4262"
},
{
"name": "CVE-2014-4227",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4227"
},
{
"name": "CVE-2014-4268",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4268"
},
{
"name": "CVE-2014-4265",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4265"
},
{
"name": "CVE-2014-4244",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4244"
},
{
"name": "CVE-2014-4219",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4219"
},
{
"name": "CVE-2014-4216",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4216"
},
{
"name": "CVE-2014-4218",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4218"
},
{
"name": "CVE-2014-4252",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4252"
},
{
"name": "CVE-2014-4263",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4263"
},
{
"name": "CVE-2014-4209",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4209"
},
{
"name": "CVE-2014-6515",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6515"
},
{
"name": "CVE-2014-6512",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6512"
},
{
"name": "CVE-2014-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6531"
},
{
"name": "CVE-2014-6492",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6492"
},
{
"name": "CVE-2014-6511",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6511"
},
{
"name": "CVE-2014-6493",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6493"
},
{
"name": "CVE-2014-6506",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6506"
},
{
"name": "CVE-2014-6466",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6466"
},
{
"name": "CVE-2014-6513",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6513"
},
{
"name": "CVE-2014-6458",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6458"
},
{
"name": "CVE-2014-6503",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6503"
},
{
"name": "CVE-2014-6517",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6517"
},
{
"name": "CVE-2014-6457",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6457"
},
{
"name": "CVE-2014-6504",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6504"
},
{
"name": "CVE-2014-6558",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6558"
},
{
"name": "CVE-2014-6532",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6532"
},
{
"name": "CVE-2014-4288",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4288"
},
{
"name": "CVE-2015-0407",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0407"
},
{
"name": "CVE-2014-6593",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6593"
},
{
"name": "CVE-2015-0408",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0408"
},
{
"name": "CVE-2015-0412",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0412"
},
{
"name": "CVE-2015-0383",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0383"
},
{
"name": "CVE-2014-6585",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6585"
},
{
"name": "CVE-2015-0400",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0400"
},
{
"name": "CVE-2015-0403",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0403"
},
{
"name": "CVE-2014-6601",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6601"
},
{
"name": "CVE-2015-0410",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0410"
},
{
"name": "CVE-2015-0395",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0395"
},
{
"name": "CVE-2014-6587",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6587"
},
{
"name": "CVE-2014-6591",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6591"
},
{
"name": "CVE-2015-0406",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0406"
},
{
"name": "CVE-2015-0469",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0469"
},
{
"name": "CVE-2015-0488",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0488"
},
{
"name": "CVE-2015-0478",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0478"
},
{
"name": "CVE-2015-0492",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0492"
},
{
"name": "CVE-2015-0480",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0480"
},
{
"name": "CVE-2015-0491",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0491"
},
{
"name": "CVE-2015-0458",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0458"
},
{
"name": "CVE-2015-0459",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0459"
},
{
"name": "CVE-2015-0477",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0477"
},
{
"name": "CVE-2015-0460",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0460"
},
{
"name": "CVE-2015-4000",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4000"
},
{
"name": "CVE-2015-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2637"
},
{
"name": "CVE-2015-2628",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2628"
},
{
"name": "CVE-2015-4732",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4732"
},
{
"name": "CVE-2015-2638",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2638"
},
{
"name": "CVE-2015-4733",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4733"
},
{
"name": "CVE-2015-4760",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4760"
},
{
"name": "CVE-2015-4748",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4748"
},
{
"name": "CVE-2015-2625",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2625"
},
{
"name": "CVE-2015-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2627"
},
{
"name": "CVE-2015-2621",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2621"
},
{
"name": "CVE-2015-2590",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2590"
},
{
"name": "CVE-2015-4749",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4749"
},
{
"name": "CVE-2015-2601",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2601"
},
{
"name": "CVE-2015-2664",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2664"
},
{
"name": "CVE-2015-2632",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2632"
},
{
"name": "CVE-2015-4731",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4731"
},
{
"name": "CVE-2015-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4806"
},
{
"name": "CVE-2015-4835",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4835"
},
{
"name": "CVE-2015-4872",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4872"
},
{
"name": "CVE-2015-4734",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4734"
},
{
"name": "CVE-2015-4893",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4893"
},
{
"name": "CVE-2015-4903",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4903"
},
{
"name": "CVE-2015-4883",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4883"
},
{
"name": "CVE-2015-4844",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4844"
},
{
"name": "CVE-2015-4842",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4842"
},
{
"name": "CVE-2015-4805",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4805"
},
{
"name": "CVE-2015-4882",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4882"
},
{
"name": "CVE-2015-4843",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4843"
},
{
"name": "CVE-2015-4860",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4860"
},
{
"name": "CVE-2015-4911",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4911"
},
{
"name": "CVE-2015-4902",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4902"
},
{
"name": "CVE-2015-4881",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4881"
},
{
"name": "CVE-2015-4803",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4803"
},
{
"name": "CVE-2016-0466",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0466"
},
{
"name": "CVE-2016-0402",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0402"
},
{
"name": "CVE-2016-0483",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0483"
},
{
"name": "CVE-2016-0448",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0448"
},
{
"name": "CVE-2016-0494",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0494"
},
{
"name": "CVE-2016-0603",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0603"
},
{
"name": "CVE-2016-0695",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0695"
},
{
"name": "CVE-2016-3427",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3427"
},
{
"name": "CVE-2016-3425",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3425"
},
{
"name": "CVE-2016-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3449"
},
{
"name": "CVE-2016-0686",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0686"
},
{
"name": "CVE-2016-3443",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3443"
},
{
"name": "CVE-2016-3422",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3422"
},
{
"name": "CVE-2016-0687",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0687"
},
{
"name": "CVE-2016-3485",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3485"
},
{
"name": "CVE-2016-3503",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3503"
},
{
"name": "CVE-2016-3458",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3458"
},
{
"name": "CVE-2016-3500",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3500"
},
{
"name": "CVE-2016-3550",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3550"
},
{
"name": "CVE-2016-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3508"
},
{
"name": "CVE-2016-5568",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5568"
},
{
"name": "CVE-2016-5554",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5554"
},
{
"name": "CVE-2016-5542",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5542"
},
{
"name": "CVE-2016-5597",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5597"
},
{
"name": "CVE-2016-5573",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5573"
},
{
"name": "CVE-2016-5556",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5556"
},
{
"name": "CVE-2016-5582",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5582"
},
{
"name": "CVE-2013-4204",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4204"
},
{
"name": "CVE-2012-5920",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5920"
},
{
"name": "CVE-2014-8152",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8152"
},
{
"name": "CVE-2012-0547",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0547"
}
],
"initial_release_date": "2017-07-19T00:00:00",
"last_revision_date": "2017-07-19T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2017-199-01 du 18 juillet 2017",
"url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-199-01/"
}
],
"reference": "CERTFR-2017-AVI-228",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2017-07-19T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eSCADA Schneider Electric Trio TView\u003c/span\u003e. Certaines\nd\u0027entre elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de\ns\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code arbitraire \u00e0\ndistance et un d\u00e9ni de service.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA Schneider Electric Trio TView",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2017-199-01 du 18 juillet 2017",
"url": null
}
]
}
CERTA-2013-AVI-092
Vulnerability from certfr_avis
De multiples vulnérabilités ont été corrigées dans Oracle Java. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle Java JRE et JDK versions ant\u00e9rieures \u00e0 1.7.13",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Java JRE et JDK versions ant\u00e9rieures \u00e0 1.6.39",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2013-0431",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0431"
},
{
"name": "CVE-2013-1481",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1481"
},
{
"name": "CVE-2013-1489",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1489"
},
{
"name": "CVE-2013-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0426"
},
{
"name": "CVE-2013-0448",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0448"
},
{
"name": "CVE-2012-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3213"
},
{
"name": "CVE-2013-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0446"
},
{
"name": "CVE-2013-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1473"
},
{
"name": "CVE-2013-1475",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1475"
},
{
"name": "CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"name": "CVE-2013-0409",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0409"
},
{
"name": "CVE-2013-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0442"
},
{
"name": "CVE-2012-3342",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3342"
},
{
"name": "CVE-2013-1476",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1476"
},
{
"name": "CVE-2013-1479",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1479"
},
{
"name": "CVE-2013-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0434"
},
{
"name": "CVE-2013-0429",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0429"
},
{
"name": "CVE-2013-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0445"
},
{
"name": "CVE-2013-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0438"
},
{
"name": "CVE-2013-0427",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0427"
},
{
"name": "CVE-2013-0449",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0449"
},
{
"name": "CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"name": "CVE-2013-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0450"
},
{
"name": "CVE-2013-0428",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0428"
},
{
"name": "CVE-2013-0444",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0444"
},
{
"name": "CVE-2013-0430",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0430"
},
{
"name": "CVE-2012-1541",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1541"
},
{
"name": "CVE-2013-1478",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1478"
},
{
"name": "CVE-2013-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0423"
},
{
"name": "CVE-2013-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0419"
},
{
"name": "CVE-2013-0425",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0425"
},
{
"name": "CVE-2013-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0351"
},
{
"name": "CVE-2013-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0441"
},
{
"name": "CVE-2013-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0432"
},
{
"name": "CVE-2013-0424",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0424"
},
{
"name": "CVE-2013-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0435"
},
{
"name": "CVE-2013-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0433"
},
{
"name": "CVE-2013-0437",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0437"
},
{
"name": "CVE-2013-1480",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1480"
}
],
"initial_release_date": "2013-02-04T00:00:00",
"last_revision_date": "2013-02-04T00:00:00",
"links": [],
"reference": "CERTA-2013-AVI-092",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2013-02-04T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eOracle Java\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0\nun attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance,\nun d\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle Java",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle du 01 f\u00e9vrier 2013",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
}
]
}
ghsa-cmgc-2xrq-r89p
Vulnerability from github
Published
2022-05-05 02:49
Modified
2022-05-05 02:49
VLAI Severity ?
Details
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.
{
"affected": [],
"aliases": [
"CVE-2013-0430"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2013-02-02T00:55:00Z",
"severity": "MODERATE"
},
"details": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.",
"id": "GHSA-cmgc-2xrq-r89p",
"modified": "2022-05-05T02:49:02Z",
"published": "2022-05-05T02:49:02Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"type": "WEB",
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/57722"
},
{
"type": "WEB",
"url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html"
}
],
"schema_version": "1.4.0",
"severity": []
}
fkie_cve-2013-0430
Vulnerability from fkie_nvd
Published
2013-02-02 00:55
Modified
2025-04-11 00:51
Severity ?
Summary
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.
References
| URL | Tags | ||
|---|---|---|---|
| secalert_us@oracle.com | http://marc.info/?l=bugtraq&m=136733161405818&w=2 | ||
| secalert_us@oracle.com | http://rhn.redhat.com/errata/RHSA-2013-0236.html | ||
| secalert_us@oracle.com | http://rhn.redhat.com/errata/RHSA-2013-0237.html | ||
| secalert_us@oracle.com | http://www.kb.cert.org/vuls/id/858729 | US Government Resource | |
| secalert_us@oracle.com | http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html | Vendor Advisory | |
| secalert_us@oracle.com | http://www.securityfocus.com/bid/57722 | ||
| secalert_us@oracle.com | http://www.us-cert.gov/cas/techalerts/TA13-032A.html | US Government Resource | |
| secalert_us@oracle.com | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=136733161405818&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://rhn.redhat.com/errata/RHSA-2013-0236.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://rhn.redhat.com/errata/RHSA-2013-0237.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.kb.cert.org/vuls/id/858729 | US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/57722 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.us-cert.gov/cas/techalerts/TA13-032A.html | US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600 |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| oracle | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| sun | jre | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| oracle | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 | |
| sun | jdk | 1.6.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5C27372B-A091-46D5-AE39-A44BBB1D9EE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*",
"matchCriteriaId": "F4B153FD-E20B-4909-8B10-884E48F5B590",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*",
"matchCriteriaId": "F21933FB-A27C-4AF3-9811-2DE28484A5A6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*",
"matchCriteriaId": "B2B20041-EB5D-4FA4-AC7D-C35E7878BCFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*",
"matchCriteriaId": "CB106FA9-26CE-48C5-AEA5-FD1A5454AEE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*",
"matchCriteriaId": "5831D70B-3854-4CB8-B88D-40F1743DAEE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*",
"matchCriteriaId": "EEB101C9-CA38-4421-BC0C-C1AD47AA2CC9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*",
"matchCriteriaId": "BA302DF3-ABBB-4262-B206-4C0F7B5B1E91",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*",
"matchCriteriaId": "F9A8EBCB-5E6A-42F0-8D07-F3A3D1C850F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*",
"matchCriteriaId": "0CD8A54E-185B-4D34-82EF-C0C05739EC12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*",
"matchCriteriaId": "4FFC7F0D-1F32-4235-8359-277CE41382DF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E44FC8AF-F76F-4A8E-8D03-4F8BCA8CB031",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*",
"matchCriteriaId": "6152036D-6421-4AE4-9223-766FE07B5A44",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*",
"matchCriteriaId": "FE8B0935-6637-413D-B896-28E0ED7F2CEC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*",
"matchCriteriaId": "30B480BC-0886-4B19-B0A5-57B531077F40",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*",
"matchCriteriaId": "D375CECB-405C-4E18-A7E8-9C5A2F97BD69",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*",
"matchCriteriaId": "52EEEA5A-E77C-43CF-A063-9D5C64EA1870",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*",
"matchCriteriaId": "003746F6-DEF0-4D0F-AD97-9E335868E301",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*",
"matchCriteriaId": "CF830E0E-0169-4B6A-81FF-2E9FCD7D913B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*",
"matchCriteriaId": "6BAE3670-0938-480A-8472-DFF0B3A0D0BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*",
"matchCriteriaId": "0EC967FF-26A6-4498-BC09-EC23B2B75CBA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*",
"matchCriteriaId": "02781457-4E40-46A9-A5F7-945232A8C2B1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*",
"matchCriteriaId": "EF13B96D-1F80-4672-8DA3-F86F6D3BF070",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*",
"matchCriteriaId": "D1A2D440-D966-41A6-955D-38B28DDE0FDB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*",
"matchCriteriaId": "B1C57774-AD93-4162-8E45-92B09139C808",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*",
"matchCriteriaId": "CD7C4194-D34A-418F-9B00-5C6012844AAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*",
"matchCriteriaId": "DAF7D86B-1B4D-4E1F-9EF0-DA7E419D7E99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*",
"matchCriteriaId": "F0B82FB1-0F0E-44F9-87AE-628517279E4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*",
"matchCriteriaId": "A0A67640-2F4A-488A-9D8F-3FE1F4DA8DEF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*",
"matchCriteriaId": "0D60D98D-4363-44A0-AAB4-B61BA623EE21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*",
"matchCriteriaId": "23CDA4F0-C32B-4B08-A377-7D4426C2F569",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*",
"matchCriteriaId": "8E76476E-4120-46A9-90A8-A95FE89636CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*",
"matchCriteriaId": "97A84689-0CED-404F-8DC3-708BEB37D2CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*",
"matchCriteriaId": "738EC3E5-A4EB-47FE-9C9A-7C8E8C669765",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*",
"matchCriteriaId": "FF56E0D9-612D-4215-9C76-560AE0661A05",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*",
"matchCriteriaId": "BA717604-4BB0-4968-B258-7C9F884016FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*",
"matchCriteriaId": "AA71FCF4-580F-432D-AADC-65A2A92CEBC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "CBCD143C-057D-4F42-B487-46801E14ACF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*",
"matchCriteriaId": "09027C19-D442-446F-B7A8-21DB6787CF43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*",
"matchCriteriaId": "0A0FEC28-0707-4F42-9740-78F3D2D551EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*",
"matchCriteriaId": "C3C5879A-A608-4230-9DC1-C27F0F48A13B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*",
"matchCriteriaId": "0C71089A-BDDE-41FC-9DF9-9AEF4C2374DF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*",
"matchCriteriaId": "2DBB6B73-8D6B-41FF-BEE0-E0C7F5F1EB41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*",
"matchCriteriaId": "12A3B254-8580-45DB-BDE4-5B5A29CBFFB3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*",
"matchCriteriaId": "1DB1DE6A-66AE-499B-AD92-9E6ACE474C6D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*",
"matchCriteriaId": "AADBB4F9-E43E-428B-9979-F47A15696C85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*",
"matchCriteriaId": "49260B94-05DE-4B78-9068-6F5F6BFDD19E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*",
"matchCriteriaId": "C4FDE9EB-08FE-436E-A265-30E83B15DB23",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*",
"matchCriteriaId": "BE409D5C-8F9F-4DE9-ACB7-0E0B813F6399",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*",
"matchCriteriaId": "7158D2C0-E9AC-4CD6-B777-EA7B7A181997",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*",
"matchCriteriaId": "B08C075B-9FC0-4381-A9E4-FFF0362BD308",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*",
"matchCriteriaId": "F587E635-3A15-4186-B6A1-F99BE0A56820",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*",
"matchCriteriaId": "90EC6C13-4B37-48E5-8199-A702A944D5A6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*",
"matchCriteriaId": "2528152C-E20A-4D97-931C-A5EC3CEAA06D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*",
"matchCriteriaId": "A99DAB4C-272B-4C91-BC70-7729E1152590",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*",
"matchCriteriaId": "30DFC10A-A4D9-4F89-B17C-AB9260087D29",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*",
"matchCriteriaId": "272A5C44-18EC-41A9-8233-E9D4D0734EA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*",
"matchCriteriaId": "81C2C04D-D4BA-4C87-9609-C53AA63BFF19",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*",
"matchCriteriaId": "301E96A3-AD2F-48F3-9166-571BD6F9FAE3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*",
"matchCriteriaId": "6C9215D9-DB64-4CEE-85E6-E247035EFB09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*",
"matchCriteriaId": "352509FE-54D9-4A59-98B7-96E5E98BC2CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*",
"matchCriteriaId": "C3EC13D3-4CE7-459C-A7D7-7D38C1284720",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*",
"matchCriteriaId": "8CDCD1B4-C5F3-4188-B05F-23922F7DE517",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*",
"matchCriteriaId": "1824DA2D-26D5-4595-8376-8E41AB8C5E52",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*",
"matchCriteriaId": "B72F78B7-10D1-49CF-AC4D-3B10921CB633",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*",
"matchCriteriaId": "60D05860-9424-4727-B583-74A35BC9BDFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*",
"matchCriteriaId": "F85DB431-FEA4-42E7-AC29-6B66174DCD9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*",
"matchCriteriaId": "FB7E911C-C780-440A-ABFF-CCE09061BB4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*",
"matchCriteriaId": "0381EE39-2F60-49FD-A63A-B9E81C9033CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*",
"matchCriteriaId": "9AD75455-B7F0-4F42-98E7-CAA43787D606",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*",
"matchCriteriaId": "3BF0FD06-3953-49AB-A9AA-ACB6883E2D2E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*",
"matchCriteriaId": "62823E8E-99CF-40DB-B43E-CBA4E9A2F916",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*",
"matchCriteriaId": "FEA04B0D-D4E3-497D-9564-046B1CDA2342",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A3A4FEC7-A4A0-4B5C-A56C-8F80AE19865E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*",
"matchCriteriaId": "722A93D8-B5BC-42F3-92A2-E424F61269A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*",
"matchCriteriaId": "775F2611-F11C-4B84-8F40-0D034B81BF18",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*",
"matchCriteriaId": "F20FDD9F-FF45-48BC-9207-54FB02E76071",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*",
"matchCriteriaId": "9FA326F5-894A-4B01-BCA3-B126DA81CA59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*",
"matchCriteriaId": "228AB7B4-4BA4-43D4-B562-D438884DB152",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*",
"matchCriteriaId": "AFD5C688-2103-4D60-979E-D9BE69A989C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*",
"matchCriteriaId": "21421215-F722-4207-A2E5-E2DF4B29859B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*",
"matchCriteriaId": "BFB9EA23-0EF7-4582-A265-3F5AA9EC81B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*",
"matchCriteriaId": "C367B418-659E-4627-B1F1-1B1216C99055",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*",
"matchCriteriaId": "CD5E6D4E-DDDD-4B45-B5E9-F8A916287AF9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*",
"matchCriteriaId": "7358492A-491C-491E-AEDF-63CB82619BAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*",
"matchCriteriaId": "C3DACAAF-AFDC-4391-9E85-344F30937F76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*",
"matchCriteriaId": "D98175BF-B084-4FA5-899D-9E80DC3923EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*",
"matchCriteriaId": "820632CE-F8DF-47EE-B716-7530E60008B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*",
"matchCriteriaId": "FA2BD0A3-7B2D-447B-ABAC-7B867B03B632",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*",
"matchCriteriaId": "D54AB785-E9B7-47BD-B756-0C3A629D67DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*",
"matchCriteriaId": "E9412098-0353-4F7B-9245-010557E6C651",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*",
"matchCriteriaId": "AD30DAEB-4893-41CF-A455-B69C463B9337",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*",
"matchCriteriaId": "21D6CE7E-A036-496C-8E08-A87F62B5290A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*",
"matchCriteriaId": "B8F93BBE-1E8C-4EB3-BCC7-20AB2D813F98",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client."
},
{
"lang": "es",
"value": "Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 hasta Update 11 y v6 hasta Update 38, permite a usuarios locales afectar la confidencialiad, integridad y disponibilidad mediante vectores desconocidos relacionados con el proceso de instalaci\u00f3n de el cliente."
}
],
"evaluatorComment": "Per http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html \r\n\r\n\"Applies to installation process on client deployment of Java.\"",
"id": "CVE-2013-0430",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2013-02-02T00:55:01.803",
"references": [
{
"source": "secalert_us@oracle.com",
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"source": "secalert_us@oracle.com",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"source": "secalert_us@oracle.com",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"source": "secalert_us@oracle.com",
"url": "http://www.securityfocus.com/bid/57722"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"US Government Resource"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html"
},
{
"source": "secalert_us@oracle.com",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/858729"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/57722"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"US Government Resource"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16600"
}
],
"sourceIdentifier": "secalert_us@oracle.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…