Action not permitted
Modal body text goes here.
cve-2012-0551
Vulnerability from cvelistv5
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T18:30:52.887Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "SUSE-SU-2012:1265", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html" }, { "name": "SUSE-SU-2012:1231", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html" }, { "name": "oval:org.mitre.oval:def:16707", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707" }, { "name": "RHSA-2012:0734", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2012-0734.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "name": "1026941", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id?1026941" }, { "name": "SSRT100919", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" }, { "name": "RHSA-2013:1455", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-1455.html" }, { "name": "RHSA-2013:1456", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-1456.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html" }, { "name": "MDVSA-2013:150", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150" }, { "name": "53136", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/53136" }, { "name": "HPSBUX02805", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2012-04-17T00:00:00", "descriptions": [ { "lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2018-01-17T19:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle" }, "references": [ { "name": "SUSE-SU-2012:1265", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html" }, { "name": "SUSE-SU-2012:1231", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html" }, { "name": "oval:org.mitre.oval:def:16707", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707" }, { "name": "RHSA-2012:0734", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2012-0734.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "name": "1026941", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id?1026941" }, { "name": "SSRT100919", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" }, { "name": "RHSA-2013:1455", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-1455.html" }, { "name": "RHSA-2013:1456", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-1456.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html" }, { "name": "MDVSA-2013:150", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150" }, { "name": "53136", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/53136" }, { "name": "HPSBUX02805", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2012-0551", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "SUSE-SU-2012:1265", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html" }, { "name": "SUSE-SU-2012:1231", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html" }, { "name": "oval:org.mitre.oval:def:16707", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707" }, { "name": "RHSA-2012:0734", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2012-0734.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "name": "1026941", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1026941" }, { "name": "SSRT100919", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" }, { "name": "RHSA-2013:1455", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-1455.html" }, { "name": "RHSA-2013:1456", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-1456.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html" }, { "name": "MDVSA-2013:150", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150" }, { "name": "53136", "refsource": "BID", "url": "http://www.securityfocus.com/bid/53136" }, { "name": "HPSBUX02805", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" } ] } } } }, "cveMetadata": { "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2012-0551", "datePublished": "2012-05-03T18:17:00", "dateReserved": "2012-01-11T00:00:00", "dateUpdated": "2024-08-06T18:30:52.887Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2012-0551\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2012-05-03T18:55:01.590\",\"lastModified\":\"2024-11-21T01:35:13.630\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en el componente GlassFish Enterprise Server en Oracle Sun Products Suite GlassFish Enterprise Server v3.1.1 permite a atacantes remotos afectar la confidencialidad y la integridad a trav\u00e9s de vectores desconocidos relacionados con Web Container.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:N\",\"baseScore\":5.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:glassfish_server:3.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEFE6D5D-5C6F-4C96-83B9-9A8815D9467A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:*:update32:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.6.0\",\"matchCriteriaId\":\"574A7ACD-243A-4136-AB02-B89EA97C884F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"301E96A3-AD2F-48F3-9166-571BD6F9FAE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C9215D9-DB64-4CEE-85E6-E247035EFB09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"352509FE-54D9-4A59-98B7-96E5E98BC2CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3EC13D3-4CE7-459C-A7D7-7D38C1284720\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"8CDCD1B4-C5F3-4188-B05F-23922F7DE517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"1824DA2D-26D5-4595-8376-8E41AB8C5E52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"B72F78B7-10D1-49CF-AC4D-3B10921CB633\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"60D05860-9424-4727-B583-74A35BC9BDFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"F85DB431-FEA4-42E7-AC29-6B66174DCD9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:*:update32:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.6.0\",\"matchCriteriaId\":\"179867A2-8221-4B8C-A04C-35FBA8EB07D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF13B96D-1F80-4672-8DA3-F86F6D3BF070\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1A2D440-D966-41A6-955D-38B28DDE0FDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1C57774-AD93-4162-8E45-92B09139C808\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD7C4194-D34A-418F-9B00-5C6012844AAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF7D86B-1B4D-4E1F-9EF0-DA7E419D7E99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0B82FB1-0F0E-44F9-87AE-628517279E4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0A67640-2F4A-488A-9D8F-3FE1F4DA8DEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D60D98D-4363-44A0-AAB4-B61BA623EE21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"23CDA4F0-C32B-4B08-A377-7D4426C2F569\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3A4FEC7-A4A0-4B5C-A56C-8F80AE19865E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"722A93D8-B5BC-42F3-92A2-E424F61269A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"775F2611-F11C-4B84-8F40-0D034B81BF18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"F20FDD9F-FF45-48BC-9207-54FB02E76071\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FA326F5-894A-4B01-BCA3-B126DA81CA59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"228AB7B4-4BA4-43D4-B562-D438884DB152\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFD5C688-2103-4D60-979E-D9BE69A989C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"21421215-F722-4207-A2E5-E2DF4B29859B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFB9EA23-0EF7-4582-A265-3F5AA9EC81B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C367B418-659E-4627-B1F1-1B1216C99055\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD5E6D4E-DDDD-4B45-B5E9-F8A916287AF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"7358492A-491C-491E-AEDF-63CB82619BAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3DACAAF-AFDC-4391-9E85-344F30937F76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"D98175BF-B084-4FA5-899D-9E80DC3923EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"820632CE-F8DF-47EE-B716-7530E60008B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA2BD0A3-7B2D-447B-ABAC-7B867B03B632\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"D54AB785-E9B7-47BD-B756-0C3A629D67DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9412098-0353-4F7B-9245-010557E6C651\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD30DAEB-4893-41CF-A455-B69C463B9337\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*\",\"matchCriteriaId\":\"21D6CE7E-A036-496C-8E08-A87F62B5290A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8F93BBE-1E8C-4EB3-BCC7-20AB2D813F98\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBCD143C-057D-4F42-B487-46801E14ACF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"09027C19-D442-446F-B7A8-21DB6787CF43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A0FEC28-0707-4F42-9740-78F3D2D551EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3C5879A-A608-4230-9DC1-C27F0F48A13B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C71089A-BDDE-41FC-9DF9-9AEF4C2374DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DBB6B73-8D6B-41FF-BEE0-E0C7F5F1EB41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"12A3B254-8580-45DB-BDE4-5B5A29CBFFB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DB1DE6A-66AE-499B-AD92-9E6ACE474C6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"AADBB4F9-E43E-428B-9979-F47A15696C85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"49260B94-05DE-4B78-9068-6F5F6BFDD19E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4FDE9EB-08FE-436E-A265-30E83B15DB23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE409D5C-8F9F-4DE9-ACB7-0E0B813F6399\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7158D2C0-E9AC-4CD6-B777-EA7B7A181997\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"B08C075B-9FC0-4381-A9E4-FFF0362BD308\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"F587E635-3A15-4186-B6A1-F99BE0A56820\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"90EC6C13-4B37-48E5-8199-A702A944D5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"2528152C-E20A-4D97-931C-A5EC3CEAA06D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"A99DAB4C-272B-4C91-BC70-7729E1152590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"30DFC10A-A4D9-4F89-B17C-AB9260087D29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"272A5C44-18EC-41A9-8233-E9D4D0734EA6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:*:update4:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.7.0\",\"matchCriteriaId\":\"2D3162C7-575B-4AD4-B923-C97F5706349B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E44FC8AF-F76F-4A8E-8D03-4F8BCA8CB031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6152036D-6421-4AE4-9223-766FE07B5A44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D375CECB-405C-4E18-A7E8-9C5A2F97BD69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"52EEEA5A-E77C-43CF-A063-9D5C64EA1870\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:*:update4:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.7.0\",\"matchCriteriaId\":\"404F6D28-CCE9-4767-8734-544274B4D086\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C27372B-A091-46D5-AE39-A44BBB1D9EE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4B153FD-E20B-4909-8B10-884E48F5B590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB106FA9-26CE-48C5-AEA5-FD1A5454AEE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5831D70B-3854-4CB8-B88D-40F1743DAEE0\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0734.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-1455.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-1456.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2013:150\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.securityfocus.com/bid/53136\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.securitytracker.com/id?1026941\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0734.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-1455.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-1456.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2013:150\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/53136\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1026941\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}" } }
ghsa-mc32-mvw8-hcj8
Vulnerability from github
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.
{ "affected": [], "aliases": [ "CVE-2012-0551" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2012-05-03T18:55:00Z", "severity": "MODERATE" }, "details": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "id": "GHSA-mc32-mvw8-hcj8", "modified": "2022-05-04T00:31:20Z", "published": "2022-05-04T00:31:20Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2012-0734.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-1455.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-1456.html" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/53136" }, { "type": "WEB", "url": "http://www.securitytracker.com/id?1026941" } ], "schema_version": "1.4.0", "severity": [] }
gsd-2012-0551
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2012-0551", "description": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "id": "GSD-2012-0551", "references": [ "https://www.suse.com/security/cve/CVE-2012-0551.html", "https://access.redhat.com/errata/RHSA-2013:1456", "https://access.redhat.com/errata/RHSA-2013:1455", "https://access.redhat.com/errata/RHSA-2012:1289", "https://access.redhat.com/errata/RHSA-2012:1238", "https://access.redhat.com/errata/RHSA-2012:1019", "https://access.redhat.com/errata/RHSA-2012:0734", "https://packetstormsecurity.com/files/cve/CVE-2012-0551" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2012-0551" ], "details": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "id": "GSD-2012-0551", "modified": "2023-12-13T01:20:14.118822Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2012-0551", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "SUSE-SU-2012:1265", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html" }, { "name": "SUSE-SU-2012:1231", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html" }, { "name": "oval:org.mitre.oval:def:16707", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707" }, { "name": "RHSA-2012:0734", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2012-0734.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "name": "1026941", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1026941" }, { "name": "SSRT100919", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" }, { "name": "RHSA-2013:1455", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-1455.html" }, { "name": "RHSA-2013:1456", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-1456.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html" }, { "name": "MDVSA-2013:150", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150" }, { "name": "53136", "refsource": "BID", "url": "http://www.securityfocus.com/bid/53136" }, { "name": "HPSBUX02805", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:glassfish_server:3.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update32:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.6.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update32:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.6.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update4:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.7.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update4:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.7.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2012-0551" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html", "refsource": "CONFIRM", "tags": [], "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "name": "SUSE-SU-2012:1231", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html" }, { "name": "SSRT100919", "refsource": "HP", "tags": [], "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" }, { "name": "SUSE-SU-2012:1265", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html" }, { "name": "MDVSA-2013:150", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150" }, { "name": "RHSA-2013:1455", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-1455.html" }, { "name": "RHSA-2013:1456", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-1456.html" }, { "name": "53136", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/53136" }, { "name": "oval:org.mitre.oval:def:16707", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16707" }, { "name": "1026941", "refsource": "SECTRACK", "tags": [], "url": "http://www.securitytracker.com/id?1026941" }, { "name": "RHSA-2012:0734", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2012-0734.html" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2022-05-13T14:52Z", "publishedDate": "2012-05-03T18:55Z" } } }
rhsa-2012_1238
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-ibm packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM\nJava Software Development Kit.\n\nThis update fixes several vulnerabilities in the IBM Java Runtime\nEnvironment and the IBM Java Software Development Kit. Detailed\nvulnerability descriptions are linked from the IBM Security alerts page,\nlisted in the References section. (CVE-2012-0551, CVE-2012-1713,\nCVE-2012-1716, CVE-2012-1717, CVE-2012-1718, CVE-2012-1719, CVE-2012-1721,\nCVE-2012-1722, CVE-2012-1725)\n\nAll users of java-1.6.0-ibm are advised to upgrade to these updated\npackages, containing the IBM Java SE 6 SR11 release. All running instances\nof IBM Java must be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2012:1238", "url": "https://access.redhat.com/errata/RHSA-2012:1238" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "https://www.ibm.com/developerworks/java/jdk/alerts/", "url": "https://www.ibm.com/developerworks/java/jdk/alerts/" }, { "category": "external", "summary": "829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_1238.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-ibm security update", "tracking": { "current_release_date": "2024-11-14T12:12:54+00:00", "generator": { "date": "2024-11-14T12:12:54+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2012:1238", "initial_release_date": "2012-09-06T16:09:00+00:00", "revision_history": [ { "date": "2012-09-06T16:09:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2012-09-06T16:13:35+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:12:54+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-plugin@1.6.0.11.0-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.11.0-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-accessibility@1.6.0.11.0-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-plugin@1.6.0.11.0-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.11.0-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_id": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-plugin@1.6.0.11.0-1jpp.1.el5_8?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el5_8?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.11.0-1jpp.1.el5_8?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el5_8?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el5_8?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el5_8?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el5_8?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_id": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-accessibility@1.6.0.11.0-1jpp.1.el5_8?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_id": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-plugin@1.6.0.11.0-1jpp.1.el5_8?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el5_8?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.11.0-1jpp.1.el5_8?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el5_8?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el5_8?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_id": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-accessibility@1.6.0.11.0-1jpp.1.el5_8?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el5_8?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el5_8?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el6_3?arch=ppc\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el5_8?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.11.0-1jpp.1.el5_8?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el5_8?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el5_8?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el5_8?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el5_8?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.11.0-1jpp.1.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el6_3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el5_8?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el5_8?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el5_8?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el5_8?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el5_8?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el6_3?arch=s390\u0026epoch=1" } } } ], "category": "architecture", "name": "s390" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el5_8?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el5_8?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el5_8?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_id": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-accessibility@1.6.0.11.0-1jpp.1.el5_8?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el5_8?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el5_8?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el6_3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el6_3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el6_3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el6_3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el6_3?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.11.0-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-plugin@1.6.0.11.0-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.11.0-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.11.0-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.11.0-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.11.0-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.11.0-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-0551", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831355" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0551" }, { "category": "external", "summary": "RHBZ#831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0551", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0551" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1713", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829361" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, 1.4.2_37 and earlier, and JavaFX 2.1 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1713" }, { "category": "external", "summary": "RHBZ#829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1713", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1713" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)" }, { "cve": "CVE-2012-1716", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829360" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1716" }, { "category": "external", "summary": "RHBZ#829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1716", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1716" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)" }, { "cve": "CVE-2012-1717", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829358" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows local users to affect confidentiality via unknown vectors related to printing on Solaris or Linux.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insecure temporary file permissions (JRE, 7143606)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1717" }, { "category": "external", "summary": "RHBZ#829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1717", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1717" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insecure temporary file permissions (JRE, 7143606)" }, { "cve": "CVE-2012-1718", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829372" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1718" }, { "category": "external", "summary": "RHBZ#829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1718", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1718" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)" }, { "cve": "CVE-2012-1719", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829371" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect integrity, related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1719" }, { "category": "external", "summary": "RHBZ#829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1719", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1719" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)" }, { "cve": "CVE-2012-1721", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831353" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1722.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1721" }, { "category": "external", "summary": "RHBZ#831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1721", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1721" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1722", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831354" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1721.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1722" }, { "category": "external", "summary": "RHBZ#831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1722", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1722" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1725", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829376" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1725" }, { "category": "external", "summary": "RHBZ#829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1725", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1725" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-06T16:09:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1238" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Client-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-accessibility-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.i386", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.ppc64", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.s390x", "5Server-Supplementary-5.8.Z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-demo-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-devel-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-javacomm-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-jdbc-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-plugin-1:1.6.0.11.0-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.6.0-ibm-src-1:1.6.0.11.0-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)" } ] }
rhsa-2013_1456
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Low" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-ibm packages that fix several security issues are now\navailable for Red Hat Network Satellite Server 5.5.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "This update corrects several security vulnerabilities in the IBM Java\nRuntime Environment shipped as part of Red Hat Network Satellite Server\n5.5. In a typical operating environment, these are of low security risk as\nthe runtime is not used on untrusted applets.\n\nSeveral flaws were fixed in the IBM Java 2 Runtime Environment.\n(CVE-2012-0547, CVE-2012-0551, CVE-2012-1531, CVE-2012-1532, CVE-2012-1533,\nCVE-2012-1541, CVE-2012-1682, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717,\nCVE-2012-1718, CVE-2012-1719, CVE-2012-1721, CVE-2012-1722, CVE-2012-1725,\nCVE-2012-3143, CVE-2012-3159, CVE-2012-3213, CVE-2012-3216, CVE-2012-3342,\nCVE-2012-4820, CVE-2012-4822, CVE-2012-4823, CVE-2012-5068, CVE-2012-5069,\nCVE-2012-5071, CVE-2012-5072, CVE-2012-5073, CVE-2012-5075, CVE-2012-5079,\nCVE-2012-5081, CVE-2012-5083, CVE-2012-5084, CVE-2012-5089, CVE-2013-0169,\nCVE-2013-0351, CVE-2013-0401, CVE-2013-0409, CVE-2013-0419, CVE-2013-0423,\nCVE-2013-0424, CVE-2013-0425, CVE-2013-0426, CVE-2013-0427, CVE-2013-0428,\nCVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438,\nCVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445,\nCVE-2013-0446, CVE-2013-0450, CVE-2013-0809, CVE-2013-1473, CVE-2013-1476,\nCVE-2013-1478, CVE-2013-1480, CVE-2013-1481, CVE-2013-1486, CVE-2013-1487,\nCVE-2013-1491, CVE-2013-1493, CVE-2013-1500, CVE-2013-1537, CVE-2013-1540,\nCVE-2013-1557, CVE-2013-1563, CVE-2013-1569, CVE-2013-1571, CVE-2013-2383,\nCVE-2013-2384, CVE-2013-2394, CVE-2013-2407, CVE-2013-2412, CVE-2013-2417,\nCVE-2013-2418, CVE-2013-2419, CVE-2013-2420, CVE-2013-2422, CVE-2013-2424,\nCVE-2013-2429, CVE-2013-2430, CVE-2013-2432, CVE-2013-2433, CVE-2013-2435,\nCVE-2013-2437, CVE-2013-2440, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444,\nCVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2450, CVE-2013-2451,\nCVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455, CVE-2013-2456,\nCVE-2013-2457, CVE-2013-2459, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465,\nCVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-3743)\n\nUsers of Red Hat Network Satellite Server 5.5 are advised to upgrade to\nthese updated packages, which contain the IBM Java SE 6 SR14 release. For\nthis update to take effect, Red Hat Network Satellite Server must be\nrestarted (\"/usr/sbin/rhn-satellite restart\"), as well as all running\ninstances of IBM Java.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:1456", "url": "https://access.redhat.com/errata/RHSA-2013:1456" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#low", "url": "https://access.redhat.com/security/updates/classification/#low" }, { "category": "external", "summary": "829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "853097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853097" }, { "category": "external", "summary": "853228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853228" }, { "category": "external", "summary": "859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "865346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865346" }, { "category": "external", "summary": "865348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865348" }, { "category": "external", "summary": "865357", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865357" }, { "category": "external", "summary": "865363", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865363" }, { "category": "external", "summary": "865365", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865365" }, { "category": "external", "summary": "865370", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865370" }, { "category": "external", "summary": "865511", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865511" }, { "category": "external", "summary": "865514", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865514" }, { "category": "external", "summary": "865519", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865519" }, { "category": "external", "summary": "865531", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865531" }, { "category": "external", "summary": "865568", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865568" }, { "category": "external", "summary": "867185", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867185" }, { "category": "external", "summary": "867186", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867186" }, { "category": "external", "summary": "867187", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867187" }, { "category": "external", "summary": "867189", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867189" }, { "category": "external", "summary": "867190", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867190" }, { "category": "external", "summary": "867193", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867193" }, { "category": "external", "summary": "876386", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876386" }, { "category": "external", "summary": "876388", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876388" }, { "category": "external", "summary": "876389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876389" }, { "category": "external", "summary": "906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "906914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914" }, { "category": "external", "summary": "906916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916" }, { "category": "external", "summary": "906917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917" }, { "category": "external", "summary": "906918", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918" }, { "category": "external", "summary": "906921", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921" }, { "category": "external", "summary": "906923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923" }, { "category": "external", "summary": "906933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933" }, { "category": "external", "summary": "906935", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935" }, { "category": "external", "summary": "907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "907223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223" }, { "category": "external", "summary": "907224", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224" }, { "category": "external", "summary": "907226", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226" }, { "category": "external", "summary": "907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "907589", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907589" }, { "category": "external", "summary": "913014", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=913014" }, { "category": "external", "summary": "913030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=913030" }, { "category": "external", "summary": "917550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=917550" }, { "category": "external", "summary": "917553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=917553" }, { "category": "external", "summary": "920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "920248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920248" }, { "category": "external", "summary": "952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "953166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953166" }, { "category": "external", "summary": "953172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953172" }, { "category": "external", "summary": "953265", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953265" }, { "category": "external", "summary": "953267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953267" }, { "category": "external", "summary": "953269", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953269" }, { "category": "external", "summary": "953270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953270" }, { "category": "external", "summary": "953273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953273" }, { "category": "external", "summary": "953275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953275" }, { "category": "external", "summary": "973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "975767", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975767" }, { "category": "external", "summary": "975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_1456.json" } ], "title": "Red Hat Security Advisory: Red Hat Network Satellite server IBM Java Runtime security update", "tracking": { "current_release_date": "2024-12-08T10:38:43+00:00", "generator": { "date": "2024-12-08T10:38:43+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.3" } }, "id": "RHSA-2013:1456", "initial_release_date": "2013-10-23T16:26:00+00:00", "revision_history": [ { "date": "2013-10-23T16:26:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-10-23T16:29:56+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-08T10:38:43+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Satellite 5.5 (RHEL v.5)", "product": { "name": "Red Hat Satellite 5.5 (RHEL v.5)", "product_id": "5Server-Satellite55", "product_identification_helper": { "cpe": "cpe:/a:redhat:network_satellite:5.5::el5" } } }, { "category": "product_name", "name": "Red Hat Satellite 5.5 (RHEL v.6)", "product": { "name": "Red Hat Satellite 5.5 (RHEL v.6)", "product_id": "6Server-Satellite55", "product_identification_helper": { "cpe": "cpe:/a:redhat:network_satellite:5.5::el6" } } } ], "category": "product_family", "name": "Red Hat Satellite" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el5_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el5_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el6_4?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el6_4?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el5_9?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el6_4?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x as a component of Red Hat Satellite 5.5 (RHEL v.5)", "product_id": "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "relates_to_product_reference": "5Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src as a component of Red Hat Satellite 5.5 (RHEL v.5)", "product_id": "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "relates_to_product_reference": "5Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64 as a component of Red Hat Satellite 5.5 (RHEL v.5)", "product_id": "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x as a component of Red Hat Satellite 5.5 (RHEL v.5)", "product_id": "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "relates_to_product_reference": "5Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64 as a component of Red Hat Satellite 5.5 (RHEL v.5)", "product_id": "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x as a component of Red Hat Satellite 5.5 (RHEL v.6)", "product_id": "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "relates_to_product_reference": "6Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src as a component of Red Hat Satellite 5.5 (RHEL v.6)", "product_id": "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "relates_to_product_reference": "6Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64 as a component of Red Hat Satellite 5.5 (RHEL v.6)", "product_id": "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x as a component of Red Hat Satellite 5.5 (RHEL v.6)", "product_id": "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "relates_to_product_reference": "6Server-Satellite55" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64 as a component of Red Hat Satellite 5.5 (RHEL v.6)", "product_id": "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Satellite55" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-0547", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853228" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and \"a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited.\" NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of other vulnerabilities. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to \"toolkit internals references.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AWT hardening fixes (AWT, 7163201)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0547" }, { "category": "external", "summary": "RHBZ#853228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853228" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0547", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0547" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 0.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: AWT hardening fixes (AWT, 7163201)" }, { "cve": "CVE-2012-0551", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831355" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0551" }, { "category": "external", "summary": "RHBZ#831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0551", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0551" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1531", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867185" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier; and JavaFX 2.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1531" }, { "category": "external", "summary": "RHBZ#867185", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867185" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1531", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1531" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1531", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1531" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (2D)" }, { "cve": "CVE-2012-1532", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867186" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier and 6 Update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1532" }, { "category": "external", "summary": "RHBZ#867186", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867186" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1532", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1532" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1532", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1532" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (Deployment)" }, { "cve": "CVE-2012-1533", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867187" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-3159.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1533" }, { "category": "external", "summary": "RHBZ#867187", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867187" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1533", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1533" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1533", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1533" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (Deployment)" }, { "cve": "CVE-2012-1541", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906914" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1541" }, { "category": "external", "summary": "RHBZ#906914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1541" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2012-1682", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853097" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-3136. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to \"XMLDecoder security issue via ClassFinder.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: beans ClassFinder insufficient permission checks (beans, 7162476)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1682" }, { "category": "external", "summary": "RHBZ#853097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853097" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1682", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1682" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1682", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1682" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: beans ClassFinder insufficient permission checks (beans, 7162476)" }, { "cve": "CVE-2012-1713", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829361" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, 1.4.2_37 and earlier, and JavaFX 2.1 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1713" }, { "category": "external", "summary": "RHBZ#829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1713", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1713" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)" }, { "cve": "CVE-2012-1716", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829360" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1716" }, { "category": "external", "summary": "RHBZ#829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1716", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1716" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)" }, { "cve": "CVE-2012-1717", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829358" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows local users to affect confidentiality via unknown vectors related to printing on Solaris or Linux.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insecure temporary file permissions (JRE, 7143606)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1717" }, { "category": "external", "summary": "RHBZ#829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1717", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1717" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insecure temporary file permissions (JRE, 7143606)" }, { "cve": "CVE-2012-1718", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829372" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1718" }, { "category": "external", "summary": "RHBZ#829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1718", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1718" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)" }, { "cve": "CVE-2012-1719", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829371" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect integrity, related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1719" }, { "category": "external", "summary": "RHBZ#829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1719", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1719" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)" }, { "cve": "CVE-2012-1721", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831353" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1722.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1721" }, { "category": "external", "summary": "RHBZ#831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1721", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1721" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1722", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831354" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1721.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1722" }, { "category": "external", "summary": "RHBZ#831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1722", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1722" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1725", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829376" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1725" }, { "category": "external", "summary": "RHBZ#829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1725", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1725" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)" }, { "cve": "CVE-2012-3143", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867189" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than CVE-2012-5089.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (JMX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3143" }, { "category": "external", "summary": "RHBZ#867189", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867189" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3143", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3143" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3143", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3143" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (JMX)" }, { "cve": "CVE-2012-3159", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867190" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1533.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3159" }, { "category": "external", "summary": "RHBZ#867190", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867190" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3159", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3159" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3159", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3159" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability (Deployment)" }, { "cve": "CVE-2012-3213", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907223" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3213" }, { "category": "external", "summary": "RHBZ#907223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)" }, { "cve": "CVE-2012-3216", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.io.FilePermission information leak (Libraries, 6631398)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3216" }, { "category": "external", "summary": "RHBZ#865346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3216", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3216" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3216", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3216" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: java.io.FilePermission information leak (Libraries, 6631398)" }, { "cve": "CVE-2012-3342", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906917" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3342" }, { "category": "external", "summary": "RHBZ#906917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3342" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2012-4820", "discovery_date": "2012-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "876386" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes \u0026 Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to \"insecure use of the java.lang.reflect.Method invoke() method.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: java.lang.reflect.Method invoke() code execution", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4820" }, { "category": "external", "summary": "RHBZ#876386", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876386" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4820", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4820" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4820", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4820" }, { "category": "external", "summary": "http://xforce.iss.net/xforce/xfdb/78764", "url": "http://xforce.iss.net/xforce/xfdb/78764" } ], "release_date": "2012-11-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: java.lang.reflect.Method invoke() code execution" }, { "cve": "CVE-2012-4822", "discovery_date": "2012-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "876388" } ], "notes": [ { "category": "description", "text": "Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes \u0026 Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via vectors related to \"insecure use [of] multiple methods in the java.lang.class class.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: java.lang.class code execution", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4822" }, { "category": "external", "summary": "RHBZ#876388", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876388" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4822", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4822" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4822", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4822" }, { "category": "external", "summary": "http://xforce.iss.net/xforce/xfdb/78766", "url": "http://xforce.iss.net/xforce/xfdb/78766" } ], "release_date": "2012-11-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: java.lang.class code execution" }, { "cve": "CVE-2012-4823", "discovery_date": "2012-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "876389" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes \u0026 Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to \"insecure use of the java.lang.ClassLoder defineClass() method.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: java.lang.ClassLoder defineClass() code execution", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4823" }, { "category": "external", "summary": "RHBZ#876389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876389" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4823", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4823" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4823", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4823" }, { "category": "external", "summary": "http://xforce.iss.net/xforce/xfdb/78767", "url": "http://xforce.iss.net/xforce/xfdb/78767" } ], "release_date": "2012-11-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: java.lang.ClassLoder defineClass() code execution" }, { "cve": "CVE-2012-5068", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865348" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RhinoScriptEngine security bypass (Scripting, 7143535)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5068" }, { "category": "external", "summary": "RHBZ#865348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865348" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5068", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5068" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5068", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5068" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: RhinoScriptEngine security bypass (Scripting, 7143535)" }, { "cve": "CVE-2012-5069", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865531" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Concurrency.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Executors state handling issues (Concurrency, 7189103)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5069" }, { "category": "external", "summary": "RHBZ#865531", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865531" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5069", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5069" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5069", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5069" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Executors state handling issues (Concurrency, 7189103)" }, { "cve": "CVE-2012-5071", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865519" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality and integrity, related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: DescriptorSupport insufficient package access checks (JMX, 7192975)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5071" }, { "category": "external", "summary": "RHBZ#865519", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865519" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5071", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5071" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5071", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5071" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: DescriptorSupport insufficient package access checks (JMX, 7192975)" }, { "cve": "CVE-2012-5072", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865365" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessController.doPrivilegedWithCombiner() information disclosure (Security, 7172522)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5072" }, { "category": "external", "summary": "RHBZ#865365", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865365" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5072", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5072" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5072", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5072" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessController.doPrivilegedWithCombiner() information disclosure (Security, 7172522)" }, { "cve": "CVE-2012-5073", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865357" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries, a different vulnerability than CVE-2012-5079.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogManager security bypass (Libraries, 7169884)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5073" }, { "category": "external", "summary": "RHBZ#865357", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865357" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5073", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5073" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5073", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5073" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: LogManager security bypass (Libraries, 7169884)" }, { "cve": "CVE-2012-5075", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865363" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMIConnectionImpl information disclosure (JMX, 7169888)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5075" }, { "category": "external", "summary": "RHBZ#865363", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865363" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5075", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5075" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5075", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5075" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMIConnectionImpl information disclosure (JMX, 7169888)" }, { "cve": "CVE-2012-5079", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865568" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries, a different vulnerability than CVE-2012-5073.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ServiceLoader reject not subtype classes without instantiating (Libraries, 7195919)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5079" }, { "category": "external", "summary": "RHBZ#865568", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865568" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5079", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5079" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5079", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5079" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ServiceLoader reject not subtype classes without instantiating (Libraries, 7195919)" }, { "cve": "CVE-2012-5081", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865370" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect availability, related to JSSE.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JSSE denial of service (JSSE, 7186286)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5081" }, { "category": "external", "summary": "RHBZ#865370", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865370" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5081", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5081" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5081", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5081" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JSSE denial of service (JSSE, 7186286)" }, { "cve": "CVE-2012-5083", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867193" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, 1.4.2_38 and earlier, and JavaFX 2.2 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5083" }, { "category": "external", "summary": "RHBZ#867193", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867193" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5083", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5083" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5083", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5083" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (2D)" }, { "cve": "CVE-2012-5084", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865511" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: DefaultFormatter insufficient data validation (Swing, 7195194)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5084" }, { "category": "external", "summary": "RHBZ#865511", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865511" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5084", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5084" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5084", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5084" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: DefaultFormatter insufficient data validation (Swing, 7195194)" }, { "cve": "CVE-2012-5089", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865514" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than CVE-2012-3143.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMIConnectionImpl insufficient access control checks (JMX, 7198296)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5089" }, { "category": "external", "summary": "RHBZ#865514", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865514" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5089", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5089" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5089", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5089" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: RMIConnectionImpl insufficient access control checks (JMX, 7198296)" }, { "cve": "CVE-2013-0169", "discovery_date": "2013-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907589" } ], "notes": [ { "category": "description", "text": "The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the \"Lucky Thirteen\" issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "SSL/TLS: CBC padding timing attack (lucky-13)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0169" }, { "category": "external", "summary": "RHBZ#907589", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907589" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0169", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0169" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0169", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0169" }, { "category": "external", "summary": "http://www.isg.rhul.ac.uk/tls/", "url": "http://www.isg.rhul.ac.uk/tls/" }, { "category": "external", "summary": "http://www.openssl.org/news/secadv_20130205.txt", "url": "http://www.openssl.org/news/secadv_20130205.txt" }, { "category": "external", "summary": "https://polarssl.org/tech-updates/releases/polarssl-1.2.5-released", "url": "https://polarssl.org/tech-updates/releases/polarssl-1.2.5-released" } ], "release_date": "2013-02-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" }, { "category": "workaround", "details": "On OpenShift Container Platform 3.11 it\u0027s possible to edit the list of cipher suites offered by the router when performing \u0027edge\u0027, or \u0027re-encrypt\u0027 TLS modes. Please follow the documentation [1], and [2] to remove the vulnerable CBC ciphers use the modern, or intermediate cipher suites outlined by Mozilla instead [3]. In \u0027passthrough\u0027 mode TLS termination occurs in the application so that is another way to mitigate the vulnerability.\n[1] https://docs.openshift.com/container-platform/3.11/install_config/router/customized_haproxy_router.html#obtaining-router-configuration-template\n[2] https://docs.openshift.com/container-platform/3.11/install_config/router/customized_haproxy_router.html#using-configmap-replace-template\n[3] https://wiki.mozilla.org/Security/Server_Side_TLS", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "SSL/TLS: CBC padding timing attack (lucky-13)" }, { "cve": "CVE-2013-0351", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906923" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0351" }, { "category": "external", "summary": "RHBZ#906923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0351" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0401", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920245" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during a Pwn2Own competition at CanSecWest 2013. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to invocation of the system class loader by the sun.awt.datatransfer.ClassLoaderObjectInputStream class, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0401" }, { "category": "external", "summary": "RHBZ#920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0401", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0401" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)" }, { "cve": "CVE-2013-0409", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907226" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0409" }, { "category": "external", "summary": "RHBZ#907226", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0409" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)" }, { "cve": "CVE-2013-0419", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906918" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0419" }, { "category": "external", "summary": "RHBZ#906918", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0423", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906921" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0423" }, { "category": "external", "summary": "RHBZ#906921", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0424", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906813" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0424" }, { "category": "external", "summary": "RHBZ#906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)" }, { "cve": "CVE-2013-0425", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907344" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0425" }, { "category": "external", "summary": "RHBZ#907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0425" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)" }, { "cve": "CVE-2013-0426", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0426" }, { "category": "external", "summary": "RHBZ#907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)" }, { "cve": "CVE-2013-0427", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907455" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0427" }, { "category": "external", "summary": "RHBZ#907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)" }, { "cve": "CVE-2013-0428", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907207" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0428" }, { "category": "external", "summary": "RHBZ#907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)" }, { "cve": "CVE-2013-0432", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907219" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0432" }, { "category": "external", "summary": "RHBZ#907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)" }, { "cve": "CVE-2013-0433", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907456" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0433" }, { "category": "external", "summary": "RHBZ#907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)" }, { "cve": "CVE-2013-0434", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907453" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0434" }, { "category": "external", "summary": "RHBZ#907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0434" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)" }, { "cve": "CVE-2013-0435", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906892" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0435" }, { "category": "external", "summary": "RHBZ#906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)" }, { "cve": "CVE-2013-0438", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906935" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0438" }, { "category": "external", "summary": "RHBZ#906935", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0438" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0440", "discovery_date": "2012-07-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "859140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0440" }, { "category": "external", "summary": "RHBZ#859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)" }, { "cve": "CVE-2013-0441", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907458" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing serialization restriction (CORBA, 7201066)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0441" }, { "category": "external", "summary": "RHBZ#907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0441" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing serialization restriction (CORBA, 7201066)" }, { "cve": "CVE-2013-0442", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906899" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0442" }, { "category": "external", "summary": "RHBZ#906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)" }, { "cve": "CVE-2013-0443", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907340" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0443" }, { "category": "external", "summary": "RHBZ#907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)" }, { "cve": "CVE-2013-0445", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906900" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0445" }, { "category": "external", "summary": "RHBZ#906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)" }, { "cve": "CVE-2013-0446", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906916" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0446" }, { "category": "external", "summary": "RHBZ#906916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0450", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906911" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0450" }, { "category": "external", "summary": "RHBZ#906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)" }, { "cve": "CVE-2013-0809", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "917550" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the 2D component in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2013-1493.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Specially crafted sample model integer overflow (2D, 8007014)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0809" }, { "category": "external", "summary": "RHBZ#917550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=917550" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0809", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0809" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0809", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0809" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html" } ], "release_date": "2013-03-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Specially crafted sample model integer overflow (2D, 8007014)" }, { "cve": "CVE-2013-1473", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906933" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1473" }, { "category": "external", "summary": "RHBZ#906933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-1476", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907457" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1476" }, { "category": "external", "summary": "RHBZ#907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1476" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)" }, { "cve": "CVE-2013-1478", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906894" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1478" }, { "category": "external", "summary": "RHBZ#906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)" }, { "cve": "CVE-2013-1480", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906904" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1480" }, { "category": "external", "summary": "RHBZ#906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)" }, { "cve": "CVE-2013-1481", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907224" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 (Sound)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1481" }, { "category": "external", "summary": "RHBZ#907224", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1481", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1481" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 (Sound)" }, { "cve": "CVE-2013-1486", "discovery_date": "2013-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "913014" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer insufficient privilege restrictions (JMX, 8006446)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1486" }, { "category": "external", "summary": "RHBZ#913014", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=913014" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1486", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1486" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1486", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1486" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html" } ], "release_date": "2013-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MBeanServer insufficient privilege restrictions (JMX, 8006446)" }, { "cve": "CVE-2013-1487", "discovery_date": "2013-02-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "913030" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u41 and 7u15 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1487" }, { "category": "external", "summary": "RHBZ#913030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=913030" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1487", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1487" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1487", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1487" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html" } ], "release_date": "2013-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u41 and 7u15 (Deployment)" }, { "cve": "CVE-2013-1491", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920248" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via vectors related to 2D, as demonstrated by Joshua Drake during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1491" }, { "category": "external", "summary": "RHBZ#920248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920248" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1491", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1491" } ], "release_date": "2013-03-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)" }, { "cve": "CVE-2013-1493", "discovery_date": "2013-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "917553" } ], "notes": [ { "category": "description", "text": "The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (crash) via an image with crafted raster parameters, which triggers (1) an out-of-bounds read or (2) memory corruption in the JVM, as exploited in the wild in February 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CMM malformed raster memory corruption (2D, 8007675)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1493" }, { "category": "external", "summary": "RHBZ#917553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=917553" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1493", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1493" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1493", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1493" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html" } ], "release_date": "2013-03-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: CMM malformed raster memory corruption (2D, 8007675)" }, { "acknowledgments": [ { "names": [ "Tim Brown" ] } ], "cve": "CVE-2013-1500", "discovery_date": "2013-01-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975148" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "RHBZ#975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)" }, { "cve": "CVE-2013-1537", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952387" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the default java.rmi.server.useCodebaseOnly setting of false, which allows remote attackers to perform \"dynamic class downloading\" and execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: remote code loading enabled by default (RMI, 8001040)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1537" }, { "category": "external", "summary": "RHBZ#952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1537", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1537" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: remote code loading enabled by default (RMI, 8001040)" }, { "cve": "CVE-2013-1540", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953166" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2433.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1540" }, { "category": "external", "summary": "RHBZ#953166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1540", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1540" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1540", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1540" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-1557", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952648" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions\" in the LogStream.setDefaultStream method.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1557" }, { "category": "external", "summary": "RHBZ#952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1557", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1557" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)" }, { "cve": "CVE-2013-1563", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953172" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1563" }, { "category": "external", "summary": "RHBZ#953172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953172" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1563", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1563" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1563", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1563" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)" }, { "cve": "CVE-2013-1569", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952711" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"checking of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1569" }, { "category": "external", "summary": "RHBZ#952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1569", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1569" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)" }, { "acknowledgments": [ { "names": [ "US-CERT" ] } ], "cve": "CVE-2013-1571", "discovery_date": "2013-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "973474" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "RHBZ#973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1571" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571" }, { "category": "external", "summary": "http://www.kb.cert.org/vuls/id/225657", "url": "http://www.kb.cert.org/vuls/id/225657" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)" }, { "cve": "CVE-2013-2383", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952708" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"handling of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2383" }, { "category": "external", "summary": "RHBZ#952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2383", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2383" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)" }, { "cve": "CVE-2013-2384", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952709" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font layout\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2384" }, { "category": "external", "summary": "RHBZ#952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2384", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2384" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)" }, { "cve": "CVE-2013-2394", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953265" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2432 and CVE-2013-1491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2394" }, { "category": "external", "summary": "RHBZ#953265", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953265" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2394", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2394" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2394", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2394" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)" }, { "cve": "CVE-2013-2407", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "RHBZ#975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)" }, { "cve": "CVE-2013-2412", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975144" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "RHBZ#975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)" }, { "cve": "CVE-2013-2417", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952657" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an information leak involving InetAddress serialization. CVE has not investigated the apparent discrepancy between vendor reports regarding the impact of this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2417" }, { "category": "external", "summary": "RHBZ#952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2417", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2417" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)" }, { "cve": "CVE-2013-2418", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953267" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2418" }, { "category": "external", "summary": "RHBZ#953267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953267" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2418", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2418" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2418", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2418" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2419", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952656" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font processing errors\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2419" }, { "category": "external", "summary": "RHBZ#952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)" }, { "cve": "CVE-2013-2420", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952638" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient \"validation of images\" in share/native/sun/awt/image/awt_ImageRep.c, possibly involving offsets.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image processing vulnerability (2D, 8007617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2420" }, { "category": "external", "summary": "RHBZ#952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2420", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image processing vulnerability (2D, 8007617)" }, { "cve": "CVE-2013-2422", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952642" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2422" }, { "category": "external", "summary": "RHBZ#952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2422", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2422" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)" }, { "cve": "CVE-2013-2424", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952509" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality via vectors related to JMX. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient class access checks\" when \"creating new instances\" using MBeanInstantiator.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2424" }, { "category": "external", "summary": "RHBZ#952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)" }, { "cve": "CVE-2013-2429", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952521" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageWriter state corruption\" when using native code, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2429" }, { "category": "external", "summary": "RHBZ#952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)" }, { "cve": "CVE-2013-2430", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952524" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageReader state corruption\" when using native code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2430" }, { "category": "external", "summary": "RHBZ#952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)" }, { "cve": "CVE-2013-2432", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953269" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2394 and CVE-2013-1491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2432" }, { "category": "external", "summary": "RHBZ#953269", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953269" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)" }, { "cve": "CVE-2013-2433", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953270" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-1540.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2433" }, { "category": "external", "summary": "RHBZ#953270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953270" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2435", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953273" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2440.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2435" }, { "category": "external", "summary": "RHBZ#953273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953273" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2437", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2437" }, { "category": "external", "summary": "RHBZ#975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2437", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2440", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953275" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2435.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2440" }, { "category": "external", "summary": "RHBZ#953275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953275" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2442", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2466 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2442" }, { "category": "external", "summary": "RHBZ#975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2443", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "RHBZ#975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)" }, { "cve": "CVE-2013-2444", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Resource denial of service (AWT, 8001038)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "RHBZ#975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Resource denial of service (AWT, 8001038)" }, { "cve": "CVE-2013-2446", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975132" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: output stream access restrictions (CORBA, 8000642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "RHBZ#975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: output stream access restrictions (CORBA, 8000642)" }, { "cve": "CVE-2013-2447", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "RHBZ#975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)" }, { "cve": "CVE-2013-2448", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975125" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better access restrictions (Sound, 8006328)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "RHBZ#975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better access restrictions (Sound, 8006328)" }, { "cve": "CVE-2013-2450", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975141" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "RHBZ#975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)" }, { "cve": "CVE-2013-2451", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975146" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows attackers to bind to ports that are already in use.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: exclusive port binding (Networking, 7170730)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2451" }, { "category": "external", "summary": "RHBZ#975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2451", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2451" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: exclusive port binding (Networking, 7170730)" }, { "cve": "CVE-2013-2452", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Unique VMIDs (Libraries, 8001033)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "RHBZ#975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Unique VMIDs (Libraries, 8001033)" }, { "cve": "CVE-2013-2453", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975134" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "RHBZ#975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)" }, { "cve": "CVE-2013-2454", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975129" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "RHBZ#975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2454", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2454" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)" }, { "cve": "CVE-2013-2455", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "RHBZ#975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)" }, { "cve": "CVE-2013-2456", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975142" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "RHBZ#975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)" }, { "cve": "CVE-2013-2457", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Proper class checking (JMX, 8008120)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "RHBZ#975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Proper class checking (JMX, 8008120)" }, { "cve": "CVE-2013-2459", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975121" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "RHBZ#975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)" }, { "cve": "CVE-2013-2463", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "RHBZ#975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2463" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)" }, { "cve": "CVE-2013-2464", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975757" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, and CVE-2013-2473.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2464" }, { "category": "external", "summary": "RHBZ#975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2464", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2464" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (2D)" }, { "cve": "CVE-2013-2465", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image channel verification (2D, 8012597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "RHBZ#975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2465" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-28T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image channel verification (2D, 8012597)" }, { "cve": "CVE-2013-2466", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975764" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2466" }, { "category": "external", "summary": "RHBZ#975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2466", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2466" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2468", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975761" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2466.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2468" }, { "category": "external", "summary": "RHBZ#975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2468", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2468" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2469", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975120" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image layout verification (2D, 8012601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "RHBZ#975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image layout verification (2D, 8012601)" }, { "cve": "CVE-2013-2470", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975099" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "RHBZ#975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)" }, { "cve": "CVE-2013-2471", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975102" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "RHBZ#975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2471" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)" }, { "cve": "CVE-2013-2472", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975107" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "RHBZ#975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2472" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)" }, { "cve": "CVE-2013-2473", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "RHBZ#975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)" }, { "cve": "CVE-2013-3743", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975767" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 45 and earlier and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u51 and 5u51 (AWT)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-3743" }, { "category": "external", "summary": "RHBZ#975767", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975767" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-3743", "url": "https://www.cve.org/CVERecord?id=CVE-2013-3743" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-3743", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3743" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1456" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite55:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite55:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u51 and 5u51 (AWT)" } ] }
rhsa-2013_1455
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Low" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-ibm packages that fix several security issues are now\navailable for Red Hat Network Satellite Server 5.4.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "This update corrects several security vulnerabilities in the IBM Java\nRuntime Environment shipped as part of Red Hat Network Satellite Server\n5.4. In a typical operating environment, these are of low security risk as\nthe runtime is not used on untrusted applets.\n\nSeveral flaws were fixed in the IBM Java 2 Runtime Environment.\n(CVE-2011-0802, CVE-2011-0814, CVE-2011-0862, CVE-2011-0863, CVE-2011-0865,\nCVE-2011-0867, CVE-2011-0868, CVE-2011-0869, CVE-2011-0871, CVE-2011-0873,\nCVE-2011-3389, CVE-2011-3516, CVE-2011-3521, CVE-2011-3544, CVE-2011-3545,\nCVE-2011-3546, CVE-2011-3547, CVE-2011-3548, CVE-2011-3549, CVE-2011-3550,\nCVE-2011-3551, CVE-2011-3552, CVE-2011-3553, CVE-2011-3554, CVE-2011-3556,\nCVE-2011-3557, CVE-2011-3560, CVE-2011-3561, CVE-2011-3563, CVE-2011-5035,\nCVE-2012-0497, CVE-2012-0498, CVE-2012-0499, CVE-2012-0500, CVE-2012-0501,\nCVE-2012-0502, CVE-2012-0503, CVE-2012-0505, CVE-2012-0506, CVE-2012-0507,\nCVE-2012-0547, CVE-2012-0551, CVE-2012-1531, CVE-2012-1532, CVE-2012-1533,\nCVE-2012-1541, CVE-2012-1682, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717,\nCVE-2012-1718, CVE-2012-1719, CVE-2012-1721, CVE-2012-1722, CVE-2012-1725,\nCVE-2012-3143, CVE-2012-3159, CVE-2012-3213, CVE-2012-3216, CVE-2012-3342,\nCVE-2012-4820, CVE-2012-4822, CVE-2012-4823, CVE-2012-5068, CVE-2012-5069,\nCVE-2012-5071, CVE-2012-5072, CVE-2012-5073, CVE-2012-5075, CVE-2012-5079,\nCVE-2012-5081, CVE-2012-5083, CVE-2012-5084, CVE-2012-5089, CVE-2013-0169,\nCVE-2013-0351, CVE-2013-0401, CVE-2013-0409, CVE-2013-0419, CVE-2013-0423,\nCVE-2013-0424, CVE-2013-0425, CVE-2013-0426, CVE-2013-0427, CVE-2013-0428,\nCVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438,\nCVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445,\nCVE-2013-0446, CVE-2013-0450, CVE-2013-0809, CVE-2013-1473, CVE-2013-1476,\nCVE-2013-1478, CVE-2013-1480, CVE-2013-1481, CVE-2013-1486, CVE-2013-1487,\nCVE-2013-1491, CVE-2013-1493, CVE-2013-1500, CVE-2013-1537, CVE-2013-1540,\nCVE-2013-1557, CVE-2013-1563, CVE-2013-1569, CVE-2013-1571, CVE-2013-2383,\nCVE-2013-2384, CVE-2013-2394, CVE-2013-2407, CVE-2013-2412, CVE-2013-2417,\nCVE-2013-2418, CVE-2013-2419, CVE-2013-2420, CVE-2013-2422, CVE-2013-2424,\nCVE-2013-2429, CVE-2013-2430, CVE-2013-2432, CVE-2013-2433, CVE-2013-2435,\nCVE-2013-2437, CVE-2013-2440, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444,\nCVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2450, CVE-2013-2451,\nCVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455, CVE-2013-2456,\nCVE-2013-2457, CVE-2013-2459, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465,\nCVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-3743)\n\nUsers of Red Hat Network Satellite Server 5.4 are advised to upgrade to\nthese updated packages, which contain the IBM Java SE 6 SR14 release. For\nthis update to take effect, Red Hat Network Satellite Server must be\nrestarted (\"/usr/sbin/rhn-satellite restart\"), as well as all running\ninstances of IBM Java.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:1455", "url": "https://access.redhat.com/errata/RHSA-2013:1455" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#low", "url": "https://access.redhat.com/security/updates/classification/#low" }, { "category": "external", "summary": "706106", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706106" }, { "category": "external", "summary": "706139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706139" }, { "category": "external", "summary": "706153", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706153" }, { "category": "external", "summary": "706234", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706234" }, { "category": "external", "summary": "706241", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706241" }, { "category": "external", "summary": "706248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706248" }, { "category": "external", "summary": "711675", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711675" }, { "category": "external", "summary": "711676", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711676" }, { "category": "external", "summary": "711677", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711677" }, { "category": "external", "summary": "737506", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=737506" }, { "category": "external", "summary": "745379", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745379" }, { "category": "external", "summary": "745387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745387" }, { "category": "external", "summary": "745391", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745391" }, { "category": "external", "summary": "745397", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745397" }, { "category": "external", "summary": "745399", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745399" }, { "category": "external", "summary": "745442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745442" }, { "category": "external", "summary": "745447", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745447" }, { "category": "external", "summary": "745459", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745459" }, { "category": "external", "summary": "745464", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745464" }, { "category": "external", "summary": "745473", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745473" }, { "category": "external", "summary": "745476", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745476" }, { "category": "external", "summary": "747191", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747191" }, { "category": "external", "summary": "747198", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747198" }, { "category": "external", "summary": "747200", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747200" }, { "category": "external", "summary": "747203", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747203" }, { "category": "external", "summary": "747205", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747205" }, { "category": "external", "summary": "747208", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747208" }, { "category": "external", "summary": "788606", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=788606" }, { "category": "external", "summary": "788624", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=788624" }, { "category": "external", "summary": "788976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=788976" }, { "category": "external", "summary": "788994", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=788994" }, { "category": "external", "summary": "789295", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789295" }, { "category": "external", "summary": "789297", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789297" }, { "category": "external", "summary": "789299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789299" }, { "category": "external", "summary": "789300", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789300" }, { "category": "external", "summary": "789301", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789301" }, { "category": "external", "summary": "790720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=790720" }, { "category": "external", "summary": "790722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=790722" }, { "category": "external", "summary": "790724", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=790724" }, { "category": "external", "summary": "829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "853097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853097" }, { "category": "external", "summary": "853228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853228" }, { "category": "external", "summary": "859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "865346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865346" }, { "category": "external", "summary": "865348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865348" }, { "category": "external", "summary": "865357", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865357" }, { "category": "external", "summary": "865363", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865363" }, { "category": "external", "summary": "865365", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865365" }, { "category": "external", "summary": "865370", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865370" }, { "category": "external", "summary": "865511", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865511" }, { "category": "external", "summary": "865514", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865514" }, { "category": "external", "summary": "865519", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865519" }, { "category": "external", "summary": "865531", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865531" }, { "category": "external", "summary": "865568", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865568" }, { "category": "external", "summary": "867185", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867185" }, { "category": "external", "summary": "867186", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867186" }, { "category": "external", "summary": "867187", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867187" }, { "category": "external", "summary": "867189", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867189" }, { "category": "external", "summary": "867190", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867190" }, { "category": "external", "summary": "867193", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867193" }, { "category": "external", "summary": "876386", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876386" }, { "category": "external", "summary": "876388", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876388" }, { "category": "external", "summary": "876389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876389" }, { "category": "external", "summary": "906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "906914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914" }, { "category": "external", "summary": "906916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916" }, { "category": "external", "summary": "906917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917" }, { "category": "external", "summary": "906918", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918" }, { "category": "external", "summary": "906921", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921" }, { "category": "external", "summary": "906923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923" }, { "category": "external", "summary": "906933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933" }, { "category": "external", "summary": "906935", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935" }, { "category": "external", "summary": "907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "907223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223" }, { "category": "external", "summary": "907224", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224" }, { "category": "external", "summary": "907226", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226" }, { "category": "external", "summary": "907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "907589", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907589" }, { "category": "external", "summary": "913014", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=913014" }, { "category": "external", "summary": "913030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=913030" }, { "category": "external", "summary": "917550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=917550" }, { "category": "external", "summary": "917553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=917553" }, { "category": "external", "summary": "920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "920248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920248" }, { "category": "external", "summary": "952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "953166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953166" }, { "category": "external", "summary": "953172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953172" }, { "category": "external", "summary": "953265", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953265" }, { "category": "external", "summary": "953267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953267" }, { "category": "external", "summary": "953269", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953269" }, { "category": "external", "summary": "953270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953270" }, { "category": "external", "summary": "953273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953273" }, { "category": "external", "summary": "953275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953275" }, { "category": "external", "summary": "973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "975767", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975767" }, { "category": "external", "summary": "975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_1455.json" } ], "title": "Red Hat Security Advisory: Red Hat Network Satellite server IBM Java Runtime security update", "tracking": { "current_release_date": "2024-12-08T10:38:36+00:00", "generator": { "date": "2024-12-08T10:38:36+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.3" } }, "id": "RHSA-2013:1455", "initial_release_date": "2013-10-23T16:26:00+00:00", "revision_history": [ { "date": "2013-10-23T16:26:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-10-23T16:30:21+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-08T10:38:36+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Satellite 5.4 (RHEL v.5)", "product": { "name": "Red Hat Satellite 5.4 (RHEL v.5)", "product_id": "5Server-Satellite54", "product_identification_helper": { "cpe": "cpe:/a:redhat:network_satellite:5.4::el5" } } }, { "category": "product_name", "name": "Red Hat Satellite 5.4 (RHEL v.6)", "product": { "name": "Red Hat Satellite 5.4 (RHEL v.6)", "product_id": "6Server-Satellite", "product_identification_helper": { "cpe": "cpe:/a:redhat:network_satellite:5.4::el6" } } } ], "category": "product_family", "name": "Red Hat Satellite" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el5_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el5_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el6_4?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el6_4?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.14.0-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el5_9?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "product": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "product_id": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.14.0-1jpp.1.el6_4?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386 as a component of Red Hat Satellite 5.4 (RHEL v.5)", "product_id": "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Satellite54" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x as a component of Red Hat Satellite 5.4 (RHEL v.5)", "product_id": "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "relates_to_product_reference": "5Server-Satellite54" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src as a component of Red Hat Satellite 5.4 (RHEL v.5)", "product_id": "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "relates_to_product_reference": "5Server-Satellite54" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64 as a component of Red Hat Satellite 5.4 (RHEL v.5)", "product_id": "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Satellite54" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386 as a component of Red Hat Satellite 5.4 (RHEL v.5)", "product_id": "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Satellite54" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x as a component of Red Hat Satellite 5.4 (RHEL v.5)", "product_id": "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "relates_to_product_reference": "5Server-Satellite54" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64 as a component of Red Hat Satellite 5.4 (RHEL v.5)", "product_id": "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Satellite54" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x as a component of Red Hat Satellite 5.4 (RHEL v.6)", "product_id": "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "relates_to_product_reference": "6Server-Satellite" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src as a component of Red Hat Satellite 5.4 (RHEL v.6)", "product_id": "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "relates_to_product_reference": "6Server-Satellite" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64 as a component of Red Hat Satellite 5.4 (RHEL v.6)", "product_id": "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Satellite" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x as a component of Red Hat Satellite 5.4 (RHEL v.6)", "product_id": "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "relates_to_product_reference": "6Server-Satellite" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64 as a component of Red Hat Satellite 5.4 (RHEL v.6)", "product_id": "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Satellite" } ] }, "vulnerabilities": [ { "cve": "CVE-2011-0802", "discovery_date": "2011-06-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "711677" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0814.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerabilities fixed in 6u26 (Sound)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0802" }, { "category": "external", "summary": "RHBZ#711677", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711677" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0802", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0802" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0802", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0802" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerabilities fixed in 6u26 (Sound)" }, { "cve": "CVE-2011-0814", "discovery_date": "2011-06-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "711677" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound, a different vulnerability than CVE-2011-0802.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerabilities fixed in 6u26 (Sound)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0814" }, { "category": "external", "summary": "RHBZ#711677", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711677" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0814", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0814" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0814", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0814" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerabilities fixed in 6u26 (Sound)" }, { "cve": "CVE-2011-0862", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2011-05-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "706139" } ], "notes": [ { "category": "description", "text": "Multiple unspecified vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0862" }, { "category": "external", "summary": "RHBZ#706139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0862", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0862" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0862", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0862" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519)" }, { "cve": "CVE-2011-0863", "discovery_date": "2011-06-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "711676" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u26 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0863" }, { "category": "external", "summary": "RHBZ#711676", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711676" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0863", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0863" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0863", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0863" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u26 (Deployment)" }, { "cve": "CVE-2011-0865", "discovery_date": "2011-05-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "706106" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to Deserialization.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Deserialization allows creation of mutable SignedObject (Deserialization, 6618658)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0865" }, { "category": "external", "summary": "RHBZ#706106", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706106" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0865", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0865" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0865", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0865" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Deserialization allows creation of mutable SignedObject (Deserialization, 6618658)" }, { "cve": "CVE-2011-0867", "discovery_date": "2011-05-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "706153" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: NetworkInterface information leak (Networking, 7013969)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0867" }, { "category": "external", "summary": "RHBZ#706153", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706153" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0867", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0867" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0867", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0867" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: NetworkInterface information leak (Networking, 7013969)" }, { "cve": "CVE-2011-0868", "discovery_date": "2011-05-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "706241" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect numeric type conversion in TransformHelper (2D, 7016495)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0868" }, { "category": "external", "summary": "RHBZ#706241", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706241" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0868", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0868" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0868", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0868" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect numeric type conversion in TransformHelper (2D, 7016495)" }, { "cve": "CVE-2011-0869", "discovery_date": "2011-05-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "706234" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 26 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to SAAJ.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: unprivileged proxy settings change via SOAPConnection (SAAJ, 7013971)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0869" }, { "category": "external", "summary": "RHBZ#706234", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706234" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0869", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0869" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0869", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0869" } ], "release_date": "2011-06-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: unprivileged proxy settings change via SOAPConnection (SAAJ, 7013971)" }, { "cve": "CVE-2011-0871", "discovery_date": "2011-05-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "706248" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.2_31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MediaTracker created Component instances with unnecessary privileges (Swing, 7020198)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0871" }, { "category": "external", "summary": "RHBZ#706248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706248" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0871", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0871" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0871", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0871" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MediaTracker created Component instances with unnecessary privileges (Swing, 7020198)" }, { "cve": "CVE-2011-0873", "discovery_date": "2011-06-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "711675" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u26 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0873" }, { "category": "external", "summary": "RHBZ#711675", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711675" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0873", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0873" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0873", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0873" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u26 (2D)" }, { "cve": "CVE-2011-3389", "discovery_date": "2011-09-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "737506" } ], "notes": [ { "category": "description", "text": "The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a \"BEAST\" attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of, and tracking, the Rizzo/Duong chosen plain text attack on SSL/TLS 1.0, also known as \"BEAST\". This issue has been assigned CVE-2011-3389. This attack uses web browser extensions to exploit a weakness in SSL/TLS cipher-block chaining (CBC), allowing a man-in-the-middle attacker to recover certain session information, such as cookie data, from what should be a secure connection.\n\nThe research shows two ways that an attacker could mount an attack. In both cases the attacker needs access to the data stream from the web browser to the server while a user visits a malicious website using a browser. The attacker may then be able to determine a portion of the data the browser sends to the server by making a large number of requests over a period of time. This data could include information such as an authentication cookie.\n\nThe first method of attack involves using WebSockets. Currently, Red Hat does not ship any products that allow an attack using WebSockets to be successful. We are planning to update Firefox to version 7, which contains protections in the WebSocket code that prevents this particular attack from being effective. \n\nThe second method of attack involves using a malicious Java applet. In order for the attack to be successful, the attacker would need to circumvent the Same Origin Policy (SOP) controls in Java. The researchers claim to have found a flaw in the Java SOP and we will issue updates to correct this flaw as suitable fixes are available.\n\nWe are in contact with various upstream projects regarding this attack. As a precautionary measure, we plan to update the Network Security Services (NSS), GnuTLS, and OpenSSL packages as suitable fixes are available.\n\nWe will continue to track this issue and take any appropriate actions as needed.\n\nThis statement and any updates to it is available at:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=737506", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3389" }, { "category": "external", "summary": "RHBZ#737506", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=737506" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3389", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3389" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3389", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3389" } ], "release_date": "2011-09-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)" }, { "cve": "CVE-2011-3516", "discovery_date": "2011-10-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "747203" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, when running on Windows, allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u29 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3516" }, { "category": "external", "summary": "RHBZ#747203", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747203" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3516", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3516" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3516", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3516" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u29 (Deployment)" }, { "cve": "CVE-2011-3521", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745442" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE, 7, 6 Update 27 and earlier, and 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deserialization.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: IIOP deserialization code execution (Deserialization, 7055902)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3521" }, { "category": "external", "summary": "RHBZ#745442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745442" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3521", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3521" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3521", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3521" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: IIOP deserialization code execution (Deserialization, 7055902)" }, { "cve": "CVE-2011-3544", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745399" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing SecurityManager checks in scripting engine (Scripting, 7046823)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3544" }, { "category": "external", "summary": "RHBZ#745399", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745399" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3544", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3544" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3544", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3544" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-03T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing SecurityManager checks in scripting engine (Scripting, 7046823)" }, { "cve": "CVE-2011-3545", "discovery_date": "2011-10-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "747191" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u29 (Sound)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3545" }, { "category": "external", "summary": "RHBZ#747191", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747191" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3545", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3545" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3545", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3545" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u29 (Sound)" }, { "cve": "CVE-2011-3546", "discovery_date": "2011-10-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "747205" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u29 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3546" }, { "category": "external", "summary": "RHBZ#747205", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747205" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3546", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3546" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3546", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3546" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u29 (Deployment)" }, { "cve": "CVE-2011-3547", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745387" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Networking.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: InputStream skip() information leak (Networking/IO, 7000600)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3547" }, { "category": "external", "summary": "RHBZ#745387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3547", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3547" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: InputStream skip() information leak (Networking/IO, 7000600)" }, { "cve": "CVE-2011-3548", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745473" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: mutable static AWTKeyStroke.ctor (AWT, 7019773)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3548" }, { "category": "external", "summary": "RHBZ#745473", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745473" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3548", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3548" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3548", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3548" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: mutable static AWTKeyStroke.ctor (AWT, 7019773)" }, { "cve": "CVE-2011-3549", "discovery_date": "2011-10-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "747198" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u29 (Swing)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3549" }, { "category": "external", "summary": "RHBZ#747198", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747198" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3549", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3549" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3549", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3549" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u29 (Swing)" }, { "cve": "CVE-2011-3550", "discovery_date": "2011-10-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "747200" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u29 (AWT)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3550" }, { "category": "external", "summary": "RHBZ#747200", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747200" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3550", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3550" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3550", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3550" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u29 (AWT)" }, { "cve": "CVE-2011-3551", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745391" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Java2D TransformHelper integer overflow (2D, 7023640)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3551" }, { "category": "external", "summary": "RHBZ#745391", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745391" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3551", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3551" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3551", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3551" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Java2D TransformHelper integer overflow (2D, 7023640)" }, { "cve": "CVE-2011-3552", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745397" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote attackers to affect integrity via unknown vectors related to Networking.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: excessive default UDP socket limit under SecurityManager (Networking, 7032417)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3552" }, { "category": "external", "summary": "RHBZ#745397", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745397" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3552", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3552" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3552", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3552" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: excessive default UDP socket limit under SecurityManager (Networking, 7032417)" }, { "cve": "CVE-2011-3553", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745476" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote authenticated users to affect confidentiality, related to JAXWS.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JAX-WS stack-traces information leak (JAX-WS, 7046794)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3553" }, { "category": "external", "summary": "RHBZ#745476", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745476" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3553", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3553" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3553", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3553" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 3.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JAX-WS stack-traces information leak (JAX-WS, 7046794)" }, { "cve": "CVE-2011-3554", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745447" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient pack200 JAR files uncompress error checks (Runtime, 7057857)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3554" }, { "category": "external", "summary": "RHBZ#745447", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745447" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3554", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3554" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3554", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3554" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient pack200 JAR files uncompress error checks (Runtime, 7057857)" }, { "cve": "CVE-2011-3556", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745459" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI, a different vulnerability than CVE-2011-3557.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI DGC server remote code execution (RMI, 7077466)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3556" }, { "category": "external", "summary": "RHBZ#745459", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745459" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3556", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3556" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3556", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3556" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RMI DGC server remote code execution (RMI, 7077466)" }, { "cve": "CVE-2011-3557", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745464" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI, a different vulnerability than CVE-2011-3556.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI registry privileged code execution (RMI, 7083012)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3557" }, { "category": "external", "summary": "RHBZ#745464", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745464" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3557", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3557" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3557", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3557" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: RMI registry privileged code execution (RMI, 7083012)" }, { "cve": "CVE-2011-3560", "discovery_date": "2011-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "745379" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing checkSetFactory calls in HttpsURLConnection (JSSE, 7096936)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3560" }, { "category": "external", "summary": "RHBZ#745379", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745379" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3560", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3560" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3560", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3560" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: missing checkSetFactory calls in HttpsURLConnection (JSSE, 7096936)" }, { "cve": "CVE-2011-3561", "discovery_date": "2011-10-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "747208" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u29 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3561" }, { "category": "external", "summary": "RHBZ#747208", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747208" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3561", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3561" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3561", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3561" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html" } ], "release_date": "2011-10-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:A/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "JDK: unspecified vulnerability fixed in 6u29 (Deployment)" }, { "cve": "CVE-2011-3563", "discovery_date": "2012-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "789295" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Sound.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JavaSound incorrect bounds check (Sound, 7088367)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-3563" }, { "category": "external", "summary": "RHBZ#789295", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789295" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-3563", "url": "https://www.cve.org/CVERecord?id=CVE-2011-3563" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3563", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3563" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JavaSound incorrect bounds check (Sound, 7088367)" }, { "cve": "CVE-2011-5035", "discovery_date": "2011-11-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "771283" } ], "notes": [ { "category": "description", "text": "Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, aka Oracle security ticket S0104869.", "title": "Vulnerability description" }, { "category": "summary", "text": "GlassFish: hash table collisions CPU usage DoS (oCERT-2011-003)", "title": "Vulnerability summary" }, { "category": "other", "text": "Not vulnerable. This issue affects the GlassFish Web Container component. This\ncomponent is not shipped with any Red Hat products. JBoss Web and Tomcat\nprovide the web container used in all JBoss products.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-5035" }, { "category": "external", "summary": "RHBZ#771283", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=771283" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-5035", "url": "https://www.cve.org/CVERecord?id=CVE-2011-5035" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5035", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5035" } ], "release_date": "2011-12-28T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "GlassFish: hash table collisions CPU usage DoS (oCERT-2011-003)" }, { "cve": "CVE-2012-0497", "discovery_date": "2012-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "789301" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient checking of the graphics rendering object (2D, 7112642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0497" }, { "category": "external", "summary": "RHBZ#789301", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789301" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0497", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0497" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0497", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0497" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient checking of the graphics rendering object (2D, 7112642)" }, { "cve": "CVE-2012-0498", "discovery_date": "2012-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "790720" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0498" }, { "category": "external", "summary": "RHBZ#790720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=790720" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0498", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0498" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0498", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0498" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D)" }, { "cve": "CVE-2012-0499", "discovery_date": "2012-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "790722" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier; and JavaFX 2.0.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0499" }, { "category": "external", "summary": "RHBZ#790722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=790722" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0499", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0499" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0499", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0499" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D)" }, { "cve": "CVE-2012-0500", "discovery_date": "2012-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "790724" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and JavaFX 2.0.2 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u31 and 7u3 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0500" }, { "category": "external", "summary": "RHBZ#790724", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=790724" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0500", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0500" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u31 and 7u3 (Deployment)" }, { "cve": "CVE-2012-0501", "cwe": { "id": "CWE-193", "name": "Off-by-one Error" }, "discovery_date": "2012-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "788624" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect availability via unknown vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: off-by-one bug in ZIP reading code (JRE, 7118283)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0501" }, { "category": "external", "summary": "RHBZ#788624", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=788624" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0501", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0501" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0501", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0501" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: off-by-one bug in ZIP reading code (JRE, 7118283)" }, { "cve": "CVE-2012-0502", "discovery_date": "2012-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "789297" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and availability, related to AWT.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: KeyboardFocusManager focus stealing (AWT, 7110683)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0502" }, { "category": "external", "summary": "RHBZ#789297", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789297" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0502", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0502" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0502", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0502" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: KeyboardFocusManager focus stealing (AWT, 7110683)" }, { "cve": "CVE-2012-0503", "discovery_date": "2012-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "788976" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to I18n.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: unrestricted use of TimeZone.setDefault() (i18n, 7110687)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0503" }, { "category": "external", "summary": "RHBZ#788976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=788976" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0503", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0503" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0503", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0503" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: unrestricted use of TimeZone.setDefault() (i18n, 7110687)" }, { "cve": "CVE-2012-0505", "discovery_date": "2012-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "789299" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Serialization.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incomplete info in the deserialization exception (Serialization, 7110700)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0505" }, { "category": "external", "summary": "RHBZ#789299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789299" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0505", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0505" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0505", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0505" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: incomplete info in the deserialization exception (Serialization, 7110700)" }, { "cve": "CVE-2012-0506", "discovery_date": "2012-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "789300" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect integrity via unknown vectors related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: mutable repository identifiers (CORBA, 7110704)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0506" }, { "category": "external", "summary": "RHBZ#789300", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=789300" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0506", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0506" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0506", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0506" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: mutable repository identifiers (CORBA, 7110704)" }, { "cve": "CVE-2012-0507", "discovery_date": "2012-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "788994" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AtomicReferenceArray insufficient array type check (Concurrency, 7082299)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0507" }, { "category": "external", "summary": "RHBZ#788994", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=788994" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0507", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0507" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0507", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0507" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2012-02-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-03T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: AtomicReferenceArray insufficient array type check (Concurrency, 7082299)" }, { "cve": "CVE-2012-0547", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853228" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and \"a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited.\" NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of other vulnerabilities. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to \"toolkit internals references.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AWT hardening fixes (AWT, 7163201)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0547" }, { "category": "external", "summary": "RHBZ#853228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853228" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0547", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0547" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 0.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: AWT hardening fixes (AWT, 7163201)" }, { "cve": "CVE-2012-0551", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831355" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0551" }, { "category": "external", "summary": "RHBZ#831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0551", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0551" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1531", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867185" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier; and JavaFX 2.2 and earlier; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1531" }, { "category": "external", "summary": "RHBZ#867185", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867185" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1531", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1531" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1531", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1531" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (2D)" }, { "cve": "CVE-2012-1532", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867186" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier and 6 Update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1532" }, { "category": "external", "summary": "RHBZ#867186", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867186" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1532", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1532" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1532", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1532" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (Deployment)" }, { "cve": "CVE-2012-1533", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867187" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-3159.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1533" }, { "category": "external", "summary": "RHBZ#867187", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867187" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1533", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1533" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1533", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1533" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (Deployment)" }, { "cve": "CVE-2012-1541", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906914" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1541" }, { "category": "external", "summary": "RHBZ#906914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1541" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2012-1682", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853097" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-3136. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to \"XMLDecoder security issue via ClassFinder.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: beans ClassFinder insufficient permission checks (beans, 7162476)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1682" }, { "category": "external", "summary": "RHBZ#853097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853097" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1682", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1682" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1682", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1682" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: beans ClassFinder insufficient permission checks (beans, 7162476)" }, { "cve": "CVE-2012-1713", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829361" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, 1.4.2_37 and earlier, and JavaFX 2.1 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1713" }, { "category": "external", "summary": "RHBZ#829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1713", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1713" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)" }, { "cve": "CVE-2012-1716", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829360" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1716" }, { "category": "external", "summary": "RHBZ#829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1716", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1716" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)" }, { "cve": "CVE-2012-1717", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829358" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows local users to affect confidentiality via unknown vectors related to printing on Solaris or Linux.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insecure temporary file permissions (JRE, 7143606)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1717" }, { "category": "external", "summary": "RHBZ#829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1717", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1717" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insecure temporary file permissions (JRE, 7143606)" }, { "cve": "CVE-2012-1718", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829372" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1718" }, { "category": "external", "summary": "RHBZ#829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1718", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1718" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)" }, { "cve": "CVE-2012-1719", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829371" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect integrity, related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1719" }, { "category": "external", "summary": "RHBZ#829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1719", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1719" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)" }, { "cve": "CVE-2012-1721", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831353" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1722.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1721" }, { "category": "external", "summary": "RHBZ#831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1721", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1721" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1722", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831354" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1721.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1722" }, { "category": "external", "summary": "RHBZ#831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1722", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1722" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1725", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829376" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1725" }, { "category": "external", "summary": "RHBZ#829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1725", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1725" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)" }, { "cve": "CVE-2012-3143", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867189" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than CVE-2012-5089.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (JMX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3143" }, { "category": "external", "summary": "RHBZ#867189", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867189" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3143", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3143" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3143", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3143" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (JMX)" }, { "cve": "CVE-2012-3159", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867190" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1533.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3159" }, { "category": "external", "summary": "RHBZ#867190", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867190" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3159", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3159" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3159", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3159" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability (Deployment)" }, { "cve": "CVE-2012-3213", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907223" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3213" }, { "category": "external", "summary": "RHBZ#907223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)" }, { "cve": "CVE-2012-3216", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.io.FilePermission information leak (Libraries, 6631398)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3216" }, { "category": "external", "summary": "RHBZ#865346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3216", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3216" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3216", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3216" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: java.io.FilePermission information leak (Libraries, 6631398)" }, { "cve": "CVE-2012-3342", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906917" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3342" }, { "category": "external", "summary": "RHBZ#906917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3342" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2012-4820", "discovery_date": "2012-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "876386" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes \u0026 Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to \"insecure use of the java.lang.reflect.Method invoke() method.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: java.lang.reflect.Method invoke() code execution", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4820" }, { "category": "external", "summary": "RHBZ#876386", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876386" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4820", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4820" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4820", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4820" }, { "category": "external", "summary": "http://xforce.iss.net/xforce/xfdb/78764", "url": "http://xforce.iss.net/xforce/xfdb/78764" } ], "release_date": "2012-11-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: java.lang.reflect.Method invoke() code execution" }, { "cve": "CVE-2012-4822", "discovery_date": "2012-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "876388" } ], "notes": [ { "category": "description", "text": "Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes \u0026 Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via vectors related to \"insecure use [of] multiple methods in the java.lang.class class.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: java.lang.class code execution", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4822" }, { "category": "external", "summary": "RHBZ#876388", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876388" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4822", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4822" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4822", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4822" }, { "category": "external", "summary": "http://xforce.iss.net/xforce/xfdb/78766", "url": "http://xforce.iss.net/xforce/xfdb/78766" } ], "release_date": "2012-11-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: java.lang.class code execution" }, { "cve": "CVE-2012-4823", "discovery_date": "2012-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "876389" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes \u0026 Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to \"insecure use of the java.lang.ClassLoder defineClass() method.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: java.lang.ClassLoder defineClass() code execution", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4823" }, { "category": "external", "summary": "RHBZ#876389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=876389" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4823", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4823" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4823", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4823" }, { "category": "external", "summary": "http://xforce.iss.net/xforce/xfdb/78767", "url": "http://xforce.iss.net/xforce/xfdb/78767" } ], "release_date": "2012-11-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: java.lang.ClassLoder defineClass() code execution" }, { "cve": "CVE-2012-5068", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865348" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RhinoScriptEngine security bypass (Scripting, 7143535)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5068" }, { "category": "external", "summary": "RHBZ#865348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865348" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5068", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5068" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5068", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5068" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: RhinoScriptEngine security bypass (Scripting, 7143535)" }, { "cve": "CVE-2012-5069", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865531" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Concurrency.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Executors state handling issues (Concurrency, 7189103)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5069" }, { "category": "external", "summary": "RHBZ#865531", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865531" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5069", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5069" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5069", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5069" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Executors state handling issues (Concurrency, 7189103)" }, { "cve": "CVE-2012-5071", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865519" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality and integrity, related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: DescriptorSupport insufficient package access checks (JMX, 7192975)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5071" }, { "category": "external", "summary": "RHBZ#865519", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865519" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5071", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5071" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5071", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5071" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: DescriptorSupport insufficient package access checks (JMX, 7192975)" }, { "cve": "CVE-2012-5072", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865365" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessController.doPrivilegedWithCombiner() information disclosure (Security, 7172522)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5072" }, { "category": "external", "summary": "RHBZ#865365", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865365" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5072", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5072" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5072", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5072" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessController.doPrivilegedWithCombiner() information disclosure (Security, 7172522)" }, { "cve": "CVE-2012-5073", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865357" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries, a different vulnerability than CVE-2012-5079.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogManager security bypass (Libraries, 7169884)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5073" }, { "category": "external", "summary": "RHBZ#865357", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865357" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5073", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5073" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5073", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5073" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: LogManager security bypass (Libraries, 7169884)" }, { "cve": "CVE-2012-5075", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865363" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMIConnectionImpl information disclosure (JMX, 7169888)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5075" }, { "category": "external", "summary": "RHBZ#865363", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865363" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5075", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5075" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5075", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5075" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMIConnectionImpl information disclosure (JMX, 7169888)" }, { "cve": "CVE-2012-5079", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865568" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries, a different vulnerability than CVE-2012-5073.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ServiceLoader reject not subtype classes without instantiating (Libraries, 7195919)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5079" }, { "category": "external", "summary": "RHBZ#865568", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865568" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5079", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5079" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5079", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5079" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ServiceLoader reject not subtype classes without instantiating (Libraries, 7195919)" }, { "cve": "CVE-2012-5081", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865370" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect availability, related to JSSE.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JSSE denial of service (JSSE, 7186286)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5081" }, { "category": "external", "summary": "RHBZ#865370", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865370" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5081", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5081" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5081", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5081" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JSSE denial of service (JSSE, 7186286)" }, { "cve": "CVE-2012-5083", "discovery_date": "2012-10-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "867193" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, 1.4.2_38 and earlier, and JavaFX 2.2 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5083" }, { "category": "external", "summary": "RHBZ#867193", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867193" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5083", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5083" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5083", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5083" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability (2D)" }, { "cve": "CVE-2012-5084", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865511" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: DefaultFormatter insufficient data validation (Swing, 7195194)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5084" }, { "category": "external", "summary": "RHBZ#865511", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865511" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5084", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5084" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5084", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5084" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: DefaultFormatter insufficient data validation (Swing, 7195194)" }, { "cve": "CVE-2012-5089", "discovery_date": "2012-10-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "865514" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JMX, a different vulnerability than CVE-2012-3143.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMIConnectionImpl insufficient access control checks (JMX, 7198296)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5089" }, { "category": "external", "summary": "RHBZ#865514", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=865514" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5089", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5089" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5089", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5089" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html" } ], "release_date": "2012-10-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: RMIConnectionImpl insufficient access control checks (JMX, 7198296)" }, { "cve": "CVE-2013-0169", "discovery_date": "2013-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907589" } ], "notes": [ { "category": "description", "text": "The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, aka the \"Lucky Thirteen\" issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "SSL/TLS: CBC padding timing attack (lucky-13)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0169" }, { "category": "external", "summary": "RHBZ#907589", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907589" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0169", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0169" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0169", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0169" }, { "category": "external", "summary": "http://www.isg.rhul.ac.uk/tls/", "url": "http://www.isg.rhul.ac.uk/tls/" }, { "category": "external", "summary": "http://www.openssl.org/news/secadv_20130205.txt", "url": "http://www.openssl.org/news/secadv_20130205.txt" }, { "category": "external", "summary": "https://polarssl.org/tech-updates/releases/polarssl-1.2.5-released", "url": "https://polarssl.org/tech-updates/releases/polarssl-1.2.5-released" } ], "release_date": "2013-02-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" }, { "category": "workaround", "details": "On OpenShift Container Platform 3.11 it\u0027s possible to edit the list of cipher suites offered by the router when performing \u0027edge\u0027, or \u0027re-encrypt\u0027 TLS modes. Please follow the documentation [1], and [2] to remove the vulnerable CBC ciphers use the modern, or intermediate cipher suites outlined by Mozilla instead [3]. In \u0027passthrough\u0027 mode TLS termination occurs in the application so that is another way to mitigate the vulnerability.\n[1] https://docs.openshift.com/container-platform/3.11/install_config/router/customized_haproxy_router.html#obtaining-router-configuration-template\n[2] https://docs.openshift.com/container-platform/3.11/install_config/router/customized_haproxy_router.html#using-configmap-replace-template\n[3] https://wiki.mozilla.org/Security/Server_Side_TLS", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "SSL/TLS: CBC padding timing attack (lucky-13)" }, { "cve": "CVE-2013-0351", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906923" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0351" }, { "category": "external", "summary": "RHBZ#906923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0351" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0401", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920245" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during a Pwn2Own competition at CanSecWest 2013. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to invocation of the system class loader by the sun.awt.datatransfer.ClassLoaderObjectInputStream class, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0401" }, { "category": "external", "summary": "RHBZ#920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0401", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0401" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)" }, { "cve": "CVE-2013-0409", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907226" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0409" }, { "category": "external", "summary": "RHBZ#907226", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0409" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)" }, { "cve": "CVE-2013-0419", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906918" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0419" }, { "category": "external", "summary": "RHBZ#906918", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0423", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906921" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0423" }, { "category": "external", "summary": "RHBZ#906921", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0424", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906813" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0424" }, { "category": "external", "summary": "RHBZ#906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)" }, { "cve": "CVE-2013-0425", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907344" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0425" }, { "category": "external", "summary": "RHBZ#907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0425" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)" }, { "cve": "CVE-2013-0426", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0426" }, { "category": "external", "summary": "RHBZ#907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)" }, { "cve": "CVE-2013-0427", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907455" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0427" }, { "category": "external", "summary": "RHBZ#907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)" }, { "cve": "CVE-2013-0428", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907207" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0428" }, { "category": "external", "summary": "RHBZ#907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)" }, { "cve": "CVE-2013-0432", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907219" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0432" }, { "category": "external", "summary": "RHBZ#907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)" }, { "cve": "CVE-2013-0433", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907456" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0433" }, { "category": "external", "summary": "RHBZ#907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)" }, { "cve": "CVE-2013-0434", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907453" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0434" }, { "category": "external", "summary": "RHBZ#907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0434" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)" }, { "cve": "CVE-2013-0435", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906892" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0435" }, { "category": "external", "summary": "RHBZ#906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)" }, { "cve": "CVE-2013-0438", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906935" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0438" }, { "category": "external", "summary": "RHBZ#906935", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0438" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0440", "discovery_date": "2012-07-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "859140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0440" }, { "category": "external", "summary": "RHBZ#859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)" }, { "cve": "CVE-2013-0441", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907458" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing serialization restriction (CORBA, 7201066)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0441" }, { "category": "external", "summary": "RHBZ#907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0441" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing serialization restriction (CORBA, 7201066)" }, { "cve": "CVE-2013-0442", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906899" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0442" }, { "category": "external", "summary": "RHBZ#906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)" }, { "cve": "CVE-2013-0443", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907340" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0443" }, { "category": "external", "summary": "RHBZ#907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)" }, { "cve": "CVE-2013-0445", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906900" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0445" }, { "category": "external", "summary": "RHBZ#906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)" }, { "cve": "CVE-2013-0446", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906916" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0446" }, { "category": "external", "summary": "RHBZ#906916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0450", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906911" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0450" }, { "category": "external", "summary": "RHBZ#906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)" }, { "cve": "CVE-2013-0809", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "917550" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the 2D component in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2013-1493.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Specially crafted sample model integer overflow (2D, 8007014)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0809" }, { "category": "external", "summary": "RHBZ#917550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=917550" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0809", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0809" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0809", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0809" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html" } ], "release_date": "2013-03-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Specially crafted sample model integer overflow (2D, 8007014)" }, { "cve": "CVE-2013-1473", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906933" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1473" }, { "category": "external", "summary": "RHBZ#906933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-1476", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907457" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1476" }, { "category": "external", "summary": "RHBZ#907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1476" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)" }, { "cve": "CVE-2013-1478", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906894" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1478" }, { "category": "external", "summary": "RHBZ#906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)" }, { "cve": "CVE-2013-1480", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906904" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1480" }, { "category": "external", "summary": "RHBZ#906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)" }, { "cve": "CVE-2013-1481", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907224" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 (Sound)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1481" }, { "category": "external", "summary": "RHBZ#907224", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1481", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1481" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 (Sound)" }, { "cve": "CVE-2013-1486", "discovery_date": "2013-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "913014" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer insufficient privilege restrictions (JMX, 8006446)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1486" }, { "category": "external", "summary": "RHBZ#913014", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=913014" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1486", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1486" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1486", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1486" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html" } ], "release_date": "2013-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MBeanServer insufficient privilege restrictions (JMX, 8006446)" }, { "cve": "CVE-2013-1487", "discovery_date": "2013-02-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "913030" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u41 and 7u15 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1487" }, { "category": "external", "summary": "RHBZ#913030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=913030" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1487", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1487" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1487", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1487" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html" } ], "release_date": "2013-02-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u41 and 7u15 (Deployment)" }, { "cve": "CVE-2013-1491", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920248" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via vectors related to 2D, as demonstrated by Joshua Drake during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1491" }, { "category": "external", "summary": "RHBZ#920248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920248" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1491", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1491" } ], "release_date": "2013-03-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)" }, { "cve": "CVE-2013-1493", "discovery_date": "2013-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "917553" } ], "notes": [ { "category": "description", "text": "The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (crash) via an image with crafted raster parameters, which triggers (1) an out-of-bounds read or (2) memory corruption in the JVM, as exploited in the wild in February 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CMM malformed raster memory corruption (2D, 8007675)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1493" }, { "category": "external", "summary": "RHBZ#917553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=917553" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1493", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1493" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1493", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1493" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html" } ], "release_date": "2013-03-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: CMM malformed raster memory corruption (2D, 8007675)" }, { "acknowledgments": [ { "names": [ "Tim Brown" ] } ], "cve": "CVE-2013-1500", "discovery_date": "2013-01-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975148" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "RHBZ#975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)" }, { "cve": "CVE-2013-1537", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952387" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the default java.rmi.server.useCodebaseOnly setting of false, which allows remote attackers to perform \"dynamic class downloading\" and execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: remote code loading enabled by default (RMI, 8001040)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1537" }, { "category": "external", "summary": "RHBZ#952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1537", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1537" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: remote code loading enabled by default (RMI, 8001040)" }, { "cve": "CVE-2013-1540", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953166" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2433.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1540" }, { "category": "external", "summary": "RHBZ#953166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1540", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1540" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1540", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1540" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-1557", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952648" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions\" in the LogStream.setDefaultStream method.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1557" }, { "category": "external", "summary": "RHBZ#952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1557", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1557" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)" }, { "cve": "CVE-2013-1563", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953172" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1563" }, { "category": "external", "summary": "RHBZ#953172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953172" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1563", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1563" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1563", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1563" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)" }, { "cve": "CVE-2013-1569", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952711" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"checking of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1569" }, { "category": "external", "summary": "RHBZ#952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1569", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1569" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)" }, { "acknowledgments": [ { "names": [ "US-CERT" ] } ], "cve": "CVE-2013-1571", "discovery_date": "2013-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "973474" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "RHBZ#973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1571" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571" }, { "category": "external", "summary": "http://www.kb.cert.org/vuls/id/225657", "url": "http://www.kb.cert.org/vuls/id/225657" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)" }, { "cve": "CVE-2013-2383", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952708" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"handling of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2383" }, { "category": "external", "summary": "RHBZ#952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2383", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2383" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)" }, { "cve": "CVE-2013-2384", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952709" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font layout\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2384" }, { "category": "external", "summary": "RHBZ#952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2384", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2384" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)" }, { "cve": "CVE-2013-2394", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953265" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2432 and CVE-2013-1491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2394" }, { "category": "external", "summary": "RHBZ#953265", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953265" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2394", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2394" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2394", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2394" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)" }, { "cve": "CVE-2013-2407", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "RHBZ#975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)" }, { "cve": "CVE-2013-2412", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975144" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "RHBZ#975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)" }, { "cve": "CVE-2013-2417", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952657" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an information leak involving InetAddress serialization. CVE has not investigated the apparent discrepancy between vendor reports regarding the impact of this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2417" }, { "category": "external", "summary": "RHBZ#952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2417", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2417" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)" }, { "cve": "CVE-2013-2418", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953267" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2418" }, { "category": "external", "summary": "RHBZ#953267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953267" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2418", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2418" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2418", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2418" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2419", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952656" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font processing errors\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2419" }, { "category": "external", "summary": "RHBZ#952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)" }, { "cve": "CVE-2013-2420", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952638" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient \"validation of images\" in share/native/sun/awt/image/awt_ImageRep.c, possibly involving offsets.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image processing vulnerability (2D, 8007617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2420" }, { "category": "external", "summary": "RHBZ#952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2420", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image processing vulnerability (2D, 8007617)" }, { "cve": "CVE-2013-2422", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952642" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2422" }, { "category": "external", "summary": "RHBZ#952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2422", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2422" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)" }, { "cve": "CVE-2013-2424", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952509" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality via vectors related to JMX. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient class access checks\" when \"creating new instances\" using MBeanInstantiator.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2424" }, { "category": "external", "summary": "RHBZ#952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)" }, { "cve": "CVE-2013-2429", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952521" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageWriter state corruption\" when using native code, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2429" }, { "category": "external", "summary": "RHBZ#952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)" }, { "cve": "CVE-2013-2430", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952524" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageReader state corruption\" when using native code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2430" }, { "category": "external", "summary": "RHBZ#952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)" }, { "cve": "CVE-2013-2432", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953269" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2394 and CVE-2013-1491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2432" }, { "category": "external", "summary": "RHBZ#953269", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953269" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)" }, { "cve": "CVE-2013-2433", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953270" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-1540.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2433" }, { "category": "external", "summary": "RHBZ#953270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953270" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2435", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953273" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2440.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2435" }, { "category": "external", "summary": "RHBZ#953273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953273" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2437", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2437" }, { "category": "external", "summary": "RHBZ#975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2437", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2440", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953275" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2435.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2440" }, { "category": "external", "summary": "RHBZ#953275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953275" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2442", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2466 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2442" }, { "category": "external", "summary": "RHBZ#975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2443", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "RHBZ#975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)" }, { "cve": "CVE-2013-2444", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Resource denial of service (AWT, 8001038)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "RHBZ#975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Resource denial of service (AWT, 8001038)" }, { "cve": "CVE-2013-2446", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975132" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: output stream access restrictions (CORBA, 8000642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "RHBZ#975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: output stream access restrictions (CORBA, 8000642)" }, { "cve": "CVE-2013-2447", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "RHBZ#975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)" }, { "cve": "CVE-2013-2448", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975125" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better access restrictions (Sound, 8006328)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "RHBZ#975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better access restrictions (Sound, 8006328)" }, { "cve": "CVE-2013-2450", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975141" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "RHBZ#975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)" }, { "cve": "CVE-2013-2451", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975146" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows attackers to bind to ports that are already in use.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: exclusive port binding (Networking, 7170730)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2451" }, { "category": "external", "summary": "RHBZ#975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2451", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2451" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: exclusive port binding (Networking, 7170730)" }, { "cve": "CVE-2013-2452", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Unique VMIDs (Libraries, 8001033)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "RHBZ#975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Unique VMIDs (Libraries, 8001033)" }, { "cve": "CVE-2013-2453", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975134" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "RHBZ#975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)" }, { "cve": "CVE-2013-2454", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975129" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "RHBZ#975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2454", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2454" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)" }, { "cve": "CVE-2013-2455", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "RHBZ#975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)" }, { "cve": "CVE-2013-2456", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975142" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "RHBZ#975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)" }, { "cve": "CVE-2013-2457", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Proper class checking (JMX, 8008120)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "RHBZ#975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Proper class checking (JMX, 8008120)" }, { "cve": "CVE-2013-2459", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975121" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "RHBZ#975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)" }, { "cve": "CVE-2013-2463", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "RHBZ#975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2463" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)" }, { "cve": "CVE-2013-2464", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975757" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, and CVE-2013-2473.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2464" }, { "category": "external", "summary": "RHBZ#975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2464", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2464" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (2D)" }, { "cve": "CVE-2013-2465", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image channel verification (2D, 8012597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "RHBZ#975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2465" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-28T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image channel verification (2D, 8012597)" }, { "cve": "CVE-2013-2466", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975764" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2466" }, { "category": "external", "summary": "RHBZ#975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2466", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2466" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2468", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975761" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2466.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2468" }, { "category": "external", "summary": "RHBZ#975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2468", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2468" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2469", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975120" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image layout verification (2D, 8012601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "RHBZ#975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image layout verification (2D, 8012601)" }, { "cve": "CVE-2013-2470", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975099" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "RHBZ#975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)" }, { "cve": "CVE-2013-2471", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975102" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "RHBZ#975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2471" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)" }, { "cve": "CVE-2013-2472", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975107" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "RHBZ#975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2472" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)" }, { "cve": "CVE-2013-2473", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "RHBZ#975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)" }, { "cve": "CVE-2013-3743", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975767" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 45 and earlier and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u51 and 5u51 (AWT)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-3743" }, { "category": "external", "summary": "RHBZ#975767", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975767" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-3743", "url": "https://www.cve.org/CVERecord?id=CVE-2013-3743" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-3743", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3743" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-23T16:26:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1455" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.src", "5Server-Satellite54:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.i386", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.s390x", "5Server-Satellite54:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9.x86_64", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.src", "6Server-Satellite:java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4.x86_64", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.s390x", "6Server-Satellite:java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u51 and 5u51 (AWT)" } ] }
rhsa-2012_0734
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-sun packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The Sun 1.6.0 Java release includes the Sun Java 6 Runtime Environment and\nthe Sun Java 6 Software Development Kit.\n\nThis update fixes several vulnerabilities in the Sun Java 6 Runtime\nEnvironment and the Sun Java 6 Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch page, listed in the References section. (CVE-2012-0551,\nCVE-2012-1711, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717, CVE-2012-1718,\nCVE-2012-1719, CVE-2012-1721, CVE-2012-1722, CVE-2012-1723, CVE-2012-1724,\nCVE-2012-1725)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide JDK and JRE 6 Update 33 and resolve these issues.\nAll running instances of Sun Java must be restarted for the update to take\neffect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2012:0734", "url": "https://access.redhat.com/errata/RHSA-2012:0734" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "category": "external", "summary": "829354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829354" }, { "category": "external", "summary": "829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "829373", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829373" }, { "category": "external", "summary": "829374", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829374" }, { "category": "external", "summary": "829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_0734.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-sun security update", "tracking": { "current_release_date": "2024-11-14T12:12:39+00:00", "generator": { "date": "2024-11-14T12:12:39+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2012:0734", "initial_release_date": "2012-06-13T20:00:00+00:00", "revision_history": [ { "date": "2012-06-13T20:00:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-11-14T19:08:50+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:12:39+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.33-1jpp.1.el6_2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.33-1jpp.1.el6_2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.33-1jpp.1.el6_2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.33-1jpp.1.el6_2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.33-1jpp.1.el6_2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.33-1jpp.1.el6_2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.33-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.33-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.33-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.33-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.33-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.33-1jpp.1.el5_8?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "product_id": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.33-1jpp.1.el6_2?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "product": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "product_id": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.33-1jpp.1.el6_2?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "product_id": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.33-1jpp.1.el6_2?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.33-1jpp.1.el6_2?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "product_id": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.33-1jpp.1.el6_2?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.33-1jpp.1.el6_2?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.33-1jpp.1.el5_8?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.33-1jpp.1.el5_8?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "product_id": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.33-1jpp.1.el5_8?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "product": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "product_id": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.33-1jpp.1.el5_8?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "product_id": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.33-1jpp.1.el5_8?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "product_id": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.33-1jpp.1.el5_8?arch=i586\u0026epoch=1" } } } ], "category": "architecture", "name": "i586" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)", "product_id": "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Client-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.8.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.2.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-0551", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831355" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0551" }, { "category": "external", "summary": "RHBZ#831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0551", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0551" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1711", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829354" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: improper protection of CORBA data models (CORBA, 7079902)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1711" }, { "category": "external", "summary": "RHBZ#829354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829354" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1711", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1711" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1711", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1711" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: improper protection of CORBA data models (CORBA, 7079902)" }, { "cve": "CVE-2012-1713", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829361" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, 1.4.2_37 and earlier, and JavaFX 2.1 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1713" }, { "category": "external", "summary": "RHBZ#829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1713", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1713" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)" }, { "cve": "CVE-2012-1716", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829360" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1716" }, { "category": "external", "summary": "RHBZ#829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1716", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1716" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)" }, { "cve": "CVE-2012-1717", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829358" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows local users to affect confidentiality via unknown vectors related to printing on Solaris or Linux.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insecure temporary file permissions (JRE, 7143606)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1717" }, { "category": "external", "summary": "RHBZ#829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1717", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1717" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insecure temporary file permissions (JRE, 7143606)" }, { "cve": "CVE-2012-1718", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829372" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1718" }, { "category": "external", "summary": "RHBZ#829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1718", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1718" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)" }, { "cve": "CVE-2012-1719", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829371" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect integrity, related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1719" }, { "category": "external", "summary": "RHBZ#829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1719", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1719" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)" }, { "cve": "CVE-2012-1721", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831353" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1722.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1721" }, { "category": "external", "summary": "RHBZ#831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1721", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1721" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1722", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831354" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1721.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1722" }, { "category": "external", "summary": "RHBZ#831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1722", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1722" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1723", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829373" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient field accessibility checks (HotSpot, 7152811)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1723" }, { "category": "external", "summary": "RHBZ#829373", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829373" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1723", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1723" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1723", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1723" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-03T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient field accessibility checks (HotSpot, 7152811)" }, { "cve": "CVE-2012-1724", "cwe": { "id": "CWE-835", "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)" }, "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829374" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect availability, related to JAXP.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XML parsing infinite loop (JAXP, 7157609)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1724" }, { "category": "external", "summary": "RHBZ#829374", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829374" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1724", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1724" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1724", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1724" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XML parsing infinite loop (JAXP, 7157609)" }, { "cve": "CVE-2012-1725", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829376" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1725" }, { "category": "external", "summary": "RHBZ#829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1725", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1725" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-13T20:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:0734" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Client-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el5_8.x86_64", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.i586", "5Server-Supplementary-5.8.Z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el5_8.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Client-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6ComputeNode-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Server-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-demo-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-devel-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-jdbc-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-plugin-1:1.6.0.33-1jpp.1.el6_2.x86_64", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.i686", "6Workstation-Supplementary-6.2.z:java-1.6.0-sun-src-1:1.6.0.33-1jpp.1.el6_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)" } ] }
rhsa-2012_1019
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The Oracle Java 7 release includes the Oracle Java 7 Runtime Environment\nand the Oracle Java 7 Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java 7 Runtime\nEnvironment and the Oracle Java 7 Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch page, listed in the References section. (CVE-2012-0551,\nCVE-2012-1711, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717, CVE-2012-1718,\nCVE-2012-1719, CVE-2012-1721, CVE-2012-1722, CVE-2012-1723, CVE-2012-1724,\nCVE-2012-1725, CVE-2012-1726)\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 5 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2012:1019", "url": "https://access.redhat.com/errata/RHSA-2012:1019" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "category": "external", "summary": "829354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829354" }, { "category": "external", "summary": "829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "829373", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829373" }, { "category": "external", "summary": "829374", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829374" }, { "category": "external", "summary": "829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "829377", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829377" }, { "category": "external", "summary": "831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_1019.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2024-11-14T12:12:49+00:00", "generator": { "date": "2024-11-14T12:12:49+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2012:1019", "initial_release_date": "2012-06-20T11:35:00+00:00", "revision_history": [ { "date": "2012-06-20T11:35:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2012-06-20T11:39:05+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:12:49+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.5-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.5-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.5-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.5-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.5-1jpp.1.el6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.5-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.5-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.5-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.5-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.5-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-0551", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831355" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0551" }, { "category": "external", "summary": "RHBZ#831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0551", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0551" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1711", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829354" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: improper protection of CORBA data models (CORBA, 7079902)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1711" }, { "category": "external", "summary": "RHBZ#829354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829354" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1711", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1711" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1711", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1711" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: improper protection of CORBA data models (CORBA, 7079902)" }, { "cve": "CVE-2012-1713", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829361" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, 1.4.2_37 and earlier, and JavaFX 2.1 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1713" }, { "category": "external", "summary": "RHBZ#829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1713", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1713" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)" }, { "cve": "CVE-2012-1716", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829360" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1716" }, { "category": "external", "summary": "RHBZ#829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1716", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1716" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)" }, { "cve": "CVE-2012-1717", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829358" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows local users to affect confidentiality via unknown vectors related to printing on Solaris or Linux.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insecure temporary file permissions (JRE, 7143606)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1717" }, { "category": "external", "summary": "RHBZ#829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1717", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1717" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insecure temporary file permissions (JRE, 7143606)" }, { "cve": "CVE-2012-1718", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829372" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1718" }, { "category": "external", "summary": "RHBZ#829372", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829372" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1718", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1718" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1718" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)" }, { "cve": "CVE-2012-1719", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829371" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect integrity, related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1719" }, { "category": "external", "summary": "RHBZ#829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1719", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1719" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)" }, { "cve": "CVE-2012-1721", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831353" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1722.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1721" }, { "category": "external", "summary": "RHBZ#831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1721", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1721" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1722", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831354" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1721.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1722" }, { "category": "external", "summary": "RHBZ#831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1722", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1722" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1723", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829373" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient field accessibility checks (HotSpot, 7152811)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1723" }, { "category": "external", "summary": "RHBZ#829373", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829373" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1723", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1723" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1723", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1723" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-03T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient field accessibility checks (HotSpot, 7152811)" }, { "cve": "CVE-2012-1724", "cwe": { "id": "CWE-835", "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)" }, "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829374" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect availability, related to JAXP.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XML parsing infinite loop (JAXP, 7157609)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1724" }, { "category": "external", "summary": "RHBZ#829374", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829374" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1724", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1724" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1724", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1724" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XML parsing infinite loop (JAXP, 7157609)" }, { "cve": "CVE-2012-1725", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829376" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1725" }, { "category": "external", "summary": "RHBZ#829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1725", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1725" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)" }, { "cve": "CVE-2012-1726", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829377" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.lang.invoke.MethodHandles.Lookup does not honor access modes (Libraries, 7165628)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1726" }, { "category": "external", "summary": "RHBZ#829377", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829377" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1726", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1726" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1726", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1726" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-06-20T11:35:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1019" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.5-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.5-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: java.lang.invoke.MethodHandles.Lookup does not honor access modes (Libraries, 7165628)" } ] }
rhsa-2012_1289
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-ibm packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM\nJava Software Development Kit.\n\nThis update fixes several vulnerabilities in the IBM Java Runtime\nEnvironment and the IBM Java Software Development Kit. Detailed\nvulnerability descriptions are linked from the IBM Security alerts page,\nlisted in the References section. (CVE-2012-0547, CVE-2012-0551,\nCVE-2012-1682, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717, CVE-2012-1719,\nCVE-2012-1721, CVE-2012-1722, CVE-2012-1725, CVE-2012-1726, CVE-2012-3136,\nCVE-2012-4681)\n\nAll users of java-1.7.0-ibm are advised to upgrade to these updated\npackages, containing the IBM Java SE 7 SR2 release. All running instances\nof IBM Java must be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2012:1289", "url": "https://access.redhat.com/errata/RHSA-2012:1289" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "https://www.ibm.com/developerworks/java/jdk/alerts/", "url": "https://www.ibm.com/developerworks/java/jdk/alerts/" }, { "category": "external", "summary": "829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "829377", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829377" }, { "category": "external", "summary": "831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "852051", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=852051" }, { "category": "external", "summary": "853097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853097" }, { "category": "external", "summary": "853138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853138" }, { "category": "external", "summary": "853228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853228" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_1289.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-ibm security update", "tracking": { "current_release_date": "2024-11-14T12:13:05+00:00", "generator": { "date": "2024-11-14T12:13:05+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2012:1289", "initial_release_date": "2012-09-18T22:46:00+00:00", "revision_history": [ { "date": "2012-09-18T22:46:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2012-09-18T22:52:20+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:13:05+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-demo@1.7.0.2.0-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-plugin@1.7.0.2.0-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-devel@1.7.0.2.0-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-src@1.7.0.2.0-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-jdbc@1.7.0.2.0-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm@1.7.0.2.0-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-demo@1.7.0.2.0-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-plugin@1.7.0.2.0-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-devel@1.7.0.2.0-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-src@1.7.0.2.0-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-jdbc@1.7.0.2.0-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm@1.7.0.2.0-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_id": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-demo@1.7.0.2.0-1jpp.3.el6_3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_id": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-devel@1.7.0.2.0-1jpp.3.el6_3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_id": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-src@1.7.0.2.0-1jpp.3.el6_3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_id": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-jdbc@1.7.0.2.0-1jpp.3.el6_3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_id": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm@1.7.0.2.0-1jpp.3.el6_3?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_id": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-demo@1.7.0.2.0-1jpp.3.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_id": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-devel@1.7.0.2.0-1jpp.3.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_id": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-src@1.7.0.2.0-1jpp.3.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_id": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm-jdbc@1.7.0.2.0-1jpp.3.el6_3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_id": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-ibm@1.7.0.2.0-1jpp.3.el6_3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-0547", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853228" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and \"a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited.\" NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of other vulnerabilities. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to \"toolkit internals references.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AWT hardening fixes (AWT, 7163201)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0547" }, { "category": "external", "summary": "RHBZ#853228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853228" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0547", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0547" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 0.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:N", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: AWT hardening fixes (AWT, 7163201)" }, { "cve": "CVE-2012-0551", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831355" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0551" }, { "category": "external", "summary": "RHBZ#831355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0551", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0551" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0551" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1682", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853097" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-3136. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to \"XMLDecoder security issue via ClassFinder.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: beans ClassFinder insufficient permission checks (beans, 7162476)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1682" }, { "category": "external", "summary": "RHBZ#853097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853097" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1682", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1682" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1682", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1682" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: beans ClassFinder insufficient permission checks (beans, 7162476)" }, { "cve": "CVE-2012-1713", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829361" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, 1.4.2_37 and earlier, and JavaFX 2.1 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1713" }, { "category": "external", "summary": "RHBZ#829361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829361" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1713", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1713" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1713" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)" }, { "cve": "CVE-2012-1716", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829360" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1716" }, { "category": "external", "summary": "RHBZ#829360", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829360" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1716", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1716" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1716" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)" }, { "cve": "CVE-2012-1717", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829358" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows local users to affect confidentiality via unknown vectors related to printing on Solaris or Linux.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insecure temporary file permissions (JRE, 7143606)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1717" }, { "category": "external", "summary": "RHBZ#829358", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829358" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1717", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1717" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1717" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insecure temporary file permissions (JRE, 7143606)" }, { "cve": "CVE-2012-1719", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829371" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect integrity, related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1719" }, { "category": "external", "summary": "RHBZ#829371", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829371" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1719", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1719" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1719" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)" }, { "cve": "CVE-2012-1721", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831353" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1722.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1721" }, { "category": "external", "summary": "RHBZ#831353", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831353" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1721", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1721" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1721" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1722", "discovery_date": "2012-06-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "831354" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, and 6 update 32 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2012-1721.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1722" }, { "category": "external", "summary": "RHBZ#831354", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=831354" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1722", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1722" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1722" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)" }, { "cve": "CVE-2012-1725", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829376" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, and 5 update 35 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1725" }, { "category": "external", "summary": "RHBZ#829376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829376" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1725", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1725" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1725" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)" }, { "cve": "CVE-2012-1726", "discovery_date": "2012-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "829377" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.lang.invoke.MethodHandles.Lookup does not honor access modes (Libraries, 7165628)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1726" }, { "category": "external", "summary": "RHBZ#829377", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=829377" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1726", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1726" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1726", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1726" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: java.lang.invoke.MethodHandles.Lookup does not honor access modes (Libraries, 7165628)" }, { "cve": "CVE-2012-3136", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-1682.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: beans MethodElementHandler insufficient permission checks (beans, 7194567)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3136" }, { "category": "external", "summary": "RHBZ#853138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3136", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3136" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3136", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3136" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: beans MethodElementHandler insufficient permission checks (beans, 7194567)" }, { "cve": "CVE-2012-4681", "discovery_date": "2012-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "852051" } ], "notes": [ { "category": "description", "text": "Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.ClassFinder.findClass and leveraging an exception with the forName method to access restricted classes from arbitrary packages such as sun.awt.SunToolkit, then (2) using \"reflection with a trusted immediate caller\" to leverage the getField method to access and modify private fields, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: beans insufficient permission checks, Java 7 0day (beans, 7162473)", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw allowed an attacker to circumvent all restrictions applied by the Java security manager. The Java security manager is used to sandbox Java applets in web browsers, but is also used in a variety of other applications.\n\nRed Hat has tested the flaw and confirmed that it affected Java SE 7 provided by OpenJDK 7 (java-1.7.0-openjdk), Oracle Java SE 7 (java-1.7.0-oracle) and IBM Java SE 7 (java-1.7.0-ibm) as shipped with Red Hat Enterprise Linux 6. Updates correcting this issue were released for all affected packages.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4681" }, { "category": "external", "summary": "RHBZ#852051", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=852051" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4681", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4681" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4681", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4681" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2012-08-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-18T22:46:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Client-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Server-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-demo-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-devel-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-jdbc-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-plugin-1:1.7.0.2.0-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.ppc64", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.s390x", "6Workstation-Supplementary-6.3.z:java-1.7.0-ibm-src-1:1.7.0.2.0-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-03T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: beans insufficient permission checks, Java 7 0day (beans, 7162473)" } ] }
var-201205-0058
Vulnerability from variot
Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment. Oracle GlassFish Server Is Web There are vulnerabilities that affect confidentiality and integrity due to incomplete handling of containers.There is a possibility that information will be leaked or altered by a third party. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible. This vulnerability affects the following supported versions: GlassFish Enterprise Server 3.1.1. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
===================================================================== Red Hat Security Advisory
Synopsis: Critical: java-1.6.0-sun security update Advisory ID: RHSA-2012:0734-01 Product: Red Hat Enterprise Linux Extras Advisory URL: https://rhn.redhat.com/errata/RHSA-2012-0734.html Issue date: 2012-06-13 CVE Names: CVE-2012-0551 CVE-2012-1711 CVE-2012-1713 CVE-2012-1716 CVE-2012-1717 CVE-2012-1718 CVE-2012-1719 CVE-2012-1721 CVE-2012-1722 CVE-2012-1723 CVE-2012-1724 CVE-2012-1725 =====================================================================
- Summary:
Updated java-1.6.0-sun packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Supplementary (v. 6) - x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64
- Description:
The Sun 1.6.0 Java release includes the Sun Java 6 Runtime Environment and the Sun Java 6 Software Development Kit.
This update fixes several vulnerabilities in the Sun Java 6 Runtime Environment and the Sun Java 6 Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch page, listed in the References section. (CVE-2012-0551, CVE-2012-1711, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717, CVE-2012-1718, CVE-2012-1719, CVE-2012-1721, CVE-2012-1722, CVE-2012-1723, CVE-2012-1724, CVE-2012-1725)
All users of java-1.6.0-sun are advised to upgrade to these updated packages, which provide JDK and JRE 6 Update 33 and resolve these issues. All running instances of Sun Java must be restarted for the update to take effect.
- Solution:
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258
- Bugs fixed (http://bugzilla.redhat.com/):
829354 - CVE-2012-1711 OpenJDK: improper protection of CORBA data models (CORBA, 7079902)
829358 - CVE-2012-1717 OpenJDK: insecure temporary file permissions (JRE, 7143606)
829360 - CVE-2012-1716 OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)
829361 - CVE-2012-1713 OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)
829371 - CVE-2012-1719 OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)
829372 - CVE-2012-1718 OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)
829373 - CVE-2012-1723 OpenJDK: insufficient field accessibility checks (HotSpot, 7152811)
829374 - CVE-2012-1724 OpenJDK: XML parsing infinite loop (JAXP, 7157609)
829376 - CVE-2012-1725 OpenJDK: insufficient invokespecial
- Package List:
Red Hat Enterprise Linux Desktop Supplementary (v. 5):
i386: java-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.i586.rpm
x86_64: java-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.x86_64.rpm
Red Hat Enterprise Linux Server Supplementary (v. 5):
i386: java-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.i586.rpm
x86_64: java-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.x86_64.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.i586.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.x86_64.rpm
Red Hat Enterprise Linux Desktop Supplementary (v. 6):
i386: java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.i686.rpm
x86_64: java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.x86_64.rpm
Red Hat Enterprise Linux HPC Node Supplementary (v. 6):
x86_64: java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.x86_64.rpm
Red Hat Enterprise Linux Server Supplementary (v. 6):
i386: java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.i686.rpm
x86_64: java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.x86_64.rpm
Red Hat Enterprise Linux Workstation Supplementary (v. 6):
i386: java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.i686.rpm
x86_64: java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm java-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.x86_64.rpm java-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package
- References:
https://www.redhat.com/security/data/cve/CVE-2012-0551.html https://www.redhat.com/security/data/cve/CVE-2012-1711.html https://www.redhat.com/security/data/cve/CVE-2012-1713.html https://www.redhat.com/security/data/cve/CVE-2012-1716.html https://www.redhat.com/security/data/cve/CVE-2012-1717.html https://www.redhat.com/security/data/cve/CVE-2012-1718.html https://www.redhat.com/security/data/cve/CVE-2012-1719.html https://www.redhat.com/security/data/cve/CVE-2012-1721.html https://www.redhat.com/security/data/cve/CVE-2012-1722.html https://www.redhat.com/security/data/cve/CVE-2012-1723.html https://www.redhat.com/security/data/cve/CVE-2012-1724.html https://www.redhat.com/security/data/cve/CVE-2012-1725.html https://access.redhat.com/security/updates/classification/#critical http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2012 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux)
iD8DBQFP2PdfXlSAg2UNWIIRAmPoAKC0e7v7/kro/BSlg3WvTcUuUsY5GwCgnIxh yIn7jJFAEdlZRgCuCNL1mk0= =TbeE -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
APPLE-SA-2012-06-12-1 Java for OS X 2012-004 and Java for Mac OS X 10.6 Update 9
Java for OS X 2012-004 and Java for Mac OS X 10.6 Update 9 is now available and addresses the following:
Java Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7.4, OS X Lion Server v10.7.4 Impact: Multiple vulnerabilities in Java Description: Multiple vulnerabilities exist in Java, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. These issues are addressed by updating to Java version 1.6.0_33. Further information is available via the Java website at http://www.o racle.com/technetwork/java/javase/releasenotes-136954.html CVE-ID CVE-2012-0551 CVE-2012-1711 CVE-2012-1713 CVE-2012-1716 CVE-2012-1718 CVE-2012-1719 CVE-2012-1721 CVE-2012-1722 CVE-2012-1723 CVE-2012-1724 CVE-2012-1725
Java Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8 Impact: The Java browser plugin and Java Web Start are deactivated if they remain unused for 35 days Description: As a security hardening measure, the Java browser plugin and Java Web Start are deactivated if they are unused for 35 days. Installing this update will automatically deactivate the Java browser plugin and Java Web Start. Users may re-enable Java if they encounter Java applets on a web page or Java Web Start applications by clicking the region labeled "Inactive plug-in" on a web page. This security measure is also available for OS Lion systems if the prior update "Java for OS X 2012-003" was not installed.
Java Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7.4, OS X Lion Server v10.7.4 Impact: The Java browser plugin and Java Web Start are deactivated if they do not meet the criteria for minimum safe version Description: As a security hardening measure, the Java browser plugin and Java Web Start are deactivated if they do not meet the criteria for minimum safe version. The minimum safe version of Java is updated daily, as needed.
Note: These updates include the security content from Java for OS X 2012-003 and Java for Mac OS X 10.6 Update 8.
Java for OS X 2012-004 and Java for Mac OS X 10.6 Update 9 may be obtained from the Software Update pane in System Preferences, or Apple's Software Downloads web site: http://www.apple.com/support/downloads/
For Mac OS X v10.6 systems The download file is named: JavaForMacOSX10.6.dmg Its SHA-1 digest is: c2fcc844b7073d8243588f3407eb3ce1d497043d
For OS X Lion systems The download file is named: JavaForOSX.dmg Its SHA-1 digest is: f176546327bc62d8cd397d54d1dc22b72aee1d2b
Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222
This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org
iQIcBAEBAgAGBQJP15giAAoJEPefwLHPlZEw0JUQAI8bP4nvp9BgEyc8K2Z1GrKW sH0nTQtVCei8yF/ORZh7bnxTgANx/kbcwyy/+rfRuU0cKCryvIH5I6Odjt4qE17q Kqa/L8Xsl3pBdEwRVbo2rvy5IAVB32L8fUMfcQ4mweYeimTilR/+O9qQnFChZiEU KZgLCGDmBbGqhP/P/g9CM9G+g2rC+nG/07U8MN9nk0Mfio2mHxMSxFy96b4DK3TX g5R6nYOth+GEQPCC0+O7zKoVViL/6xLxvrnuGQL9uYizDgYLpfIHAyDUTJy27yVb t6ggjZIfMMKEL2uQAKh/1WlLN7oMfyYyIJkdKmjb9ZYRIia3brlmlDsEzoIH7DSr fdOJ/zUDHn6qvrRktdNhNJWI6z6XY6EzDWe+HnCbZvifqK7oiAtRJo7BcFeMFQS8 wDFLGebzr2YRFV+5Oa3hxDmGzXvl2B0FQ/T2PSOUraUuj14LSA1H/ekD7MrSo+09 tNDK2C3VpVY5eK7gjxFX8+hWT1w/x3jyIPWA7fCOzG6BM27FnQBuroFTTLlEmsev yV1Mcnd+KBgS194yu29gzbApOAQBHLT5epps1n/omIfQoKAfjfN66KM+dgl9e7uB 6s3s4sRCzQX8XtYlnC0PRG050R2lkO16k9UddZ/0CqE4pegIiIcvWtt4MB3jxMxr lTEVodir4Ubn3QZQ0SK7 =J235 -----END PGP SIGNATURE----- . In a typical operating environment, these are of low security risk as the runtime is not used on untrusted applets. ----------------------------------------------------------------------
Become a PSI 3.0 beta tester! Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface. Download it here! http://secunia.com/psi_30_beta_launch
TITLE: Oracle GlassFish Enterprise Server Cross-Site Scripting and Request Forgery
SECUNIA ADVISORY ID: SA48798
VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/48798/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=48798
RELEASE DATE: 2012-04-18
DISCUSS ADVISORY: http://secunia.com/advisories/48798/#comments
AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)
http://secunia.com/advisories/48798/
ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS
https://ca.secunia.com/?page=viewadvisory&vuln_id=48798
ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING
http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
DESCRIPTION: Security-Assessment.com has reported some vulnerabilities in Oracle GlassFish Enterprise Server, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.
1) The application allows users to perform certain actions via HTTP requests without performing proper validity checks to verify the requests. This can be exploited to e.g. uploading an arbitrary WAR archive by tricking a logged-in administrator into visiting a specially crafted web page.
2) Input passed via multiple parameters to various scripts is not properly sanitised before being returned to the user.
The vulnerabilities are reported in version 3.1.1 (build 12).
SOLUTION: Apply patch (please see the vendor's advisory for details).
PROVIDED AND/OR DISCOVERED BY: Roberto Suggi Liverani, Security-Assessment.com.
ORIGINAL ADVISORY: Oracle: https://blogs.oracle.com/security/entry/april_2012_critical_patch_update http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html#AppendixSUNS
Security-Assessment.com: http://www.security-assessment.com/files/documents/advisory/Oracle_GlassFish_Server_REST_CSRF.pdf http://www.security-assessment.com/files/documents/advisory/Oracle_GlassFish_Server_Multiple_XSS.pdf
OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03441075
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03441075 Version: 1
HPSBUX02805 SSRT100919 rev.1 - HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2012-08-13 Last Updated: 2012-08-13
Potential Security Impact: Remote unauthorized access, disclosure of information, and other vulnerabilities
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, disclosure of information, and other vulnerabilities.
References: CVE-2012-0508, CVE-2012-0551, CVE-2012-1711, CVE-2012-1713, CVE-2012-1716, CVE-2012-1718, CVE-2012-1719, CVE-2012-1720, CVE-2012-1721, CVE-2012-1722, CVE-2012-1723, CVE-2012-1724, CVE-2012-1725, CVE-2012-1726
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.11, B.11.23, and B.11.31 running HP JDK and JRE 7.0.02 and 6.0.15
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2012-0508 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-0551 (AV:N/AC:M/Au:N/C:P/I:P/A:N) 5.8 CVE-2012-1711 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-1713 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-1716 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-1718 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2012-1719 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2012-1720 (AV:L/AC:H/Au:N/C:P/I:P/A:P) 3.7 CVE-2012-1721 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-1722 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-1723 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-1724 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2012-1725 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-1726 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following Java version upgrade to resolve these vulnerabilities. The upgrade is available from the following location
http://www.hp.com/go/java
HP-UX B.11.23, B.11.31 / JDK and JRE v7.0.02 or subsequent
HP-UX B.11.23, B.11.31 / JDK and JRE v6.0.15 or subsequent
HP-UX B.11.11, B.11.23 / JDK and JRE v6.0.15 or subsequent
MANUAL ACTIONS: Yes - Update For Java v7.0 update to Java v7.0.02 or subsequent For Java v6.0 update to Java v6.0.15 or subsequent
PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS
HP-UX B.11.23 HP-UX B.11.31 =========== Jdk70.JDK70-COM Jdk70.JDK70-DEMO Jdk70.JDK70-IPF32 Jdk70.JDK70-IPF64 Jre70.JRE70-COM Jre70.JRE70-IPF32 Jre70.JRE70-IPF32-HS Jre70.JRE70-IPF64 Jre70.JRE70-IPF64-HS action: install revision 1.7.0.02.00 or subsequent
HP-UX B.11.23 HP-UX B.11.31 =========== Jdk60.JDK60-COM Jdk60.JDK60-DEMO Jdk60.JDK60-IPF32 Jdk60.JDK60-IPF64 Jre60.JRE60-COM Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS action: install revision 1.6.0.15.00 or subsequent
HP-UX B.11.11 HP-UX B.11.23 =========== Jdk60.JDK60-COM Jdk60.JDK60-DEMO Jdk60.JDK60-PA20 Jdk60.JDK60-PA20W Jre60.JRE60-COM Jre60.JRE60-COM-DOC Jre60.JRE60-PA20 Jre60.JRE60-PA20-HS Jre60.JRE60-PA20W Jre60.JRE60-PA20W-HS action: install revision 1.6.0.15.00 or subsequent
END AFFECTED VERSIONS
HISTORY Version:1 (rev.1) - 13 August 2012 Initial release
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c02964430
Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2012 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", "affected_products": { "@id": "https://www.variotdbs.pl/ref/affected_products" }, "configurations": { "@id": "https://www.variotdbs.pl/ref/configurations" }, "credits": { "@id": "https://www.variotdbs.pl/ref/credits" }, "cvss": { "@id": "https://www.variotdbs.pl/ref/cvss/" }, "description": { "@id": "https://www.variotdbs.pl/ref/description/" }, "exploit_availability": { "@id": "https://www.variotdbs.pl/ref/exploit_availability/" }, "external_ids": { "@id": "https://www.variotdbs.pl/ref/external_ids/" }, "iot": { "@id": "https://www.variotdbs.pl/ref/iot/" }, "iot_taxonomy": { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/" }, "patch": { "@id": "https://www.variotdbs.pl/ref/patch/" }, "problemtype_data": { "@id": "https://www.variotdbs.pl/ref/problemtype_data/" }, "references": { "@id": "https://www.variotdbs.pl/ref/references/" }, "sources": { "@id": "https://www.variotdbs.pl/ref/sources/" }, "sources_release_date": { "@id": "https://www.variotdbs.pl/ref/sources_release_date/" }, "sources_update_date": { "@id": "https://www.variotdbs.pl/ref/sources_update_date/" }, "threat_type": { "@id": "https://www.variotdbs.pl/ref/threat_type/" }, "title": { "@id": "https://www.variotdbs.pl/ref/title/" }, "type": { "@id": "https://www.variotdbs.pl/ref/type/" } }, "@id": "https://www.variotdbs.pl/vuln/VAR-201205-0058", "affected_products": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "model": "glassfish server", "scope": "eq", "trust": 1.8, "vendor": "oracle", "version": "3.1.1" }, { "model": "jdk", "scope": "eq", "trust": 1.6, "vendor": "oracle", "version": "1.7.0" }, { "model": "jre", "scope": "eq", "trust": 1.6, "vendor": "oracle", "version": "1.7.0" }, { "model": "jdk", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.7.0" }, { "model": "jre", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.6.0" }, { "model": "jre", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.6.0" }, { "model": "jdk", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.6.0" }, { "model": "jdk", "scope": "eq", "trust": 1.0, "vendor": "sun", "version": "1.6.0" }, { "model": "jre", "scope": "eq", "trust": 1.0, "vendor": "sun", "version": "1.6.0" }, { "model": "jdk", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.6.0" }, { "model": "jre", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.7.0" }, { "model": "jre 17", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 13", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 12", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 10", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 07", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 06", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 05", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 04", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.7" }, { "model": "jre 1.6.0 31", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 21", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 19", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 18", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 15", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 14", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 11", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 03", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 02", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 01", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 17", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 14", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 13", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 11", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 10", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 07", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 06", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 05", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 04", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 1.6.0 21", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 20", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 19", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 18", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 15", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 03", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 02", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.7.0 4", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 2", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 32", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 30", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 28", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 27", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 26", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 25", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 24", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 23", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 22", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk", "scope": "eq", "trust": 0.9, "vendor": "oracle", "version": "1.7" }, { "model": "jdk 1.7.0 4", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 2", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 32", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 30", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 28", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 27", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 26", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 25", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 24", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 23", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 22", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "mac os x", "scope": "eq", "trust": 0.8, "vendor": "apple", "version": "v10.6.8" }, { "model": "mac os x", "scope": "eq", "trust": 0.8, "vendor": "apple", "version": "v10.7.4" }, { "model": "mac os x server", "scope": "eq", "trust": 0.8, "vendor": "apple", "version": "v10.6.8" }, { "model": "mac os x server", "scope": "eq", "trust": 0.8, "vendor": "apple", "version": "v10.7.4" }, { "model": "jdk", "scope": "lte", "trust": 0.8, "vendor": "sun microsystems", "version": "6 update 32" }, { "model": "jdk", "scope": "lte", "trust": 0.8, "vendor": "sun microsystems", "version": "7 update 4" }, { "model": "jre", "scope": "lte", "trust": 0.8, "vendor": "sun microsystems", "version": "6 update 32" }, { "model": "jre", "scope": "lte", "trust": 0.8, "vendor": "sun microsystems", "version": "7 update 4" }, { "model": "jre 1.6.0 20", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 2", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 01", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 01-b06", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "1.6" }, { "model": "freeflow print server 73.c0.41", "scope": null, "trust": 0.3, "vendor": "xerox", "version": null }, { "model": "freeflow print server 73.b3.61", "scope": null, "trust": 0.3, "vendor": "xerox", "version": null }, { "model": "esx", "scope": "eq", "trust": 0.3, "vendor": "vmware", "version": "4.0" }, { "model": "esx", "scope": "eq", "trust": 0.3, "vendor": "vmware", "version": "3.5" }, { "model": "linux enterprise server for vmware sp2", "scope": "eq", "trust": 0.3, "vendor": "suse", "version": "11" }, { "model": "linux enterprise server sp2", "scope": "eq", "trust": 0.3, "vendor": "suse", "version": "11" }, { "model": "linux enterprise java sp2", "scope": "eq", "trust": 0.3, "vendor": "suse", "version": "11" }, { "model": "linux enterprise software development kit sp2", "scope": "eq", "trust": 0.3, "vendor": "suse", "version": "11" }, { "model": "jdk 1.6.0 01-b06", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "jdk 01", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.07" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.06" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.05" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.04" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.03" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.021" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.020" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.019" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.018" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.017" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.016" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.015" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.014" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.013" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.012" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.011" }, { "model": "jdk update", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6.010" }, { "model": "trio tview software", "scope": "eq", "trust": 0.3, "vendor": "schneider electric", "version": "3.27.0" }, { "model": "network satellite (for rhel", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6)5.5" }, { "model": "network satellite (for rhel", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5)5.5" }, { "model": "enterprise linux workstation supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux supplementary server", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "enterprise linux server supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux hpc node supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux desktop supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux desktop supplementary client", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "glassfish enterprise server", "scope": "eq", "trust": 0.3, "vendor": "oracle", "version": "3.1.1" }, { "model": "tivoli monitoring for energy management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.3.2.1" }, { "model": "rational synergy", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.0.6" }, { "model": "rational method composer", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.5.2" }, { "model": "java se sr1", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7" }, { "model": "java se sr10", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6" }, { "model": "java se sr13", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java se sr12-fp5", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java se sr11 pf1", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java se sr11", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java se sr10", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java sdk sr1", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7" }, { "model": "java sdk 1.4.2.sr13-fp5", "scope": null, "trust": 0.3, "vendor": "ibm", "version": null }, { "model": "java sdk sr13-fp9", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "java sdk sr13-fp6", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "java sdk sr13-fp2", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "java sdk sr13-fp10", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "java sdk sr13-fp1", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "java sdk sr13 fp11", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "doors web access", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "9.4" }, { "model": "doors web access", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "9.0" }, { "model": "db2 query management facility", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "9.1.19" }, { "model": "db2 query management facility", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "10.1.5" }, { "model": "nonstop server j6.0.14.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.16", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.15.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.15", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.14.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.14", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.13.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.13", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.12.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.11.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.11.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.10.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.10.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.10.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.09.04", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.09.03", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.09.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.09.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.09.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.08.04", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.08.03", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.08.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.08.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.08.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.07.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.07.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.07.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.06.03", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.06.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.06.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.06.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.05.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.05.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.05.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.04.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.04.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server j06.04.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.27", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.26.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.26", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.25.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.25", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.24.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.24", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.23", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.22.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.22.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.21.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.21.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.21.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.20.03", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.20.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.20.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.20.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.19.03", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.19.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.19.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.19.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.18.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.18.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.18.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.17.03", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.17.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.17.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.17.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.16.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.16.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.16.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.15.02", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.15.01", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "nonstop server h06.15.00", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "hp-ux b.11.31", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "hp-ux b.11.23", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "hp-ux b.11.11", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "reflection", "scope": "eq", "trust": 0.3, "vendor": "attachmate", "version": "x2011" }, { "model": "reflection suite for", "scope": "eq", "trust": 0.3, "vendor": "attachmate", "version": "x2011" }, { "model": "reflection for secure it windows server", "scope": "eq", "trust": 0.3, "vendor": "attachmate", "version": "0" }, { "model": "reflection for secure it unix server", "scope": "eq", "trust": 0.3, "vendor": "attachmate", "version": "0" }, { "model": "reflection for secure it unix client", "scope": "eq", "trust": 0.3, "vendor": "attachmate", "version": "0" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.4" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.6.8" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.4" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.6.8" }, { "model": "trio tview software", "scope": "ne", "trust": 0.3, "vendor": "schneider electric", "version": "3.29.0" }, { "model": "rational synergy", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "7.1.0.7" }, { "model": "rational method composer", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "7.5.2.1" }, { "model": "java se sr2", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "7" }, { "model": "java se sr2-fp1", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "6.0.1" }, { "model": "java se sr11", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "6" }, { "model": "java se sr14", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java sdk sr2", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "7" }, { "model": "java sdk sr13 fp13", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "doors web access", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "9.5" }, { "model": "db2 query management facility", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "9.1.20" }, { "model": "db2 query management facility", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "10.1.6" } ], "sources": [ { "db": "BID", "id": "53136" }, { "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "db": "CNNVD", "id": "CNNVD-201204-325" }, { "db": "NVD", "id": "CVE-2012-0551" } ] }, "configurations": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", "children": { "@container": "@list" }, "cpe_match": { "@container": "@list" }, "data": { "@container": "@list" }, "nodes": { "@container": "@list" } }, "data": [ { "CVE_data_version": "4.0", "nodes": [ { "cpe_match": [ { "cpe22Uri": "cpe:/o:apple:mac_os_x", "vulnerable": true }, { "cpe22Uri": "cpe:/o:apple:mac_os_x_server", "vulnerable": true }, { "cpe22Uri": "cpe:/a:oracle:glassfish_server", "vulnerable": true }, { "cpe22Uri": "cpe:/a:sun:jdk", "vulnerable": true }, { "cpe22Uri": "cpe:/a:sun:jre", "vulnerable": true } ], "operator": "OR" } ] } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2012-002328" } ] }, "credits": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Oracle", "sources": [ { "db": "CNNVD", "id": "CNNVD-201204-325" } ], "trust": 0.6 }, "cve": "CVE-2012-0551", "cvss": { "@context": { "cvssV2": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2" }, "cvssV3": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/" }, "severity": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#" }, "@id": "https://www.variotdbs.pl/ref/cvss/severity" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "cvssV2": [ { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "author": "nvd@nist.gov", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "exploitabilityScore": 8.6, "id": "CVE-2012-0551", "impactScore": 4.9, "integrityImpact": "PARTIAL", "severity": "MEDIUM", "trust": 1.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" } ], "cvssV3": [], "severity": [ { "author": "nvd@nist.gov", "id": "CVE-2012-0551", "trust": 1.0, "value": "MEDIUM" }, { "author": "NVD", "id": "CVE-2012-0551", "trust": 0.8, "value": "Medium" }, { "author": "CNNVD", "id": "CNNVD-201204-325", "trust": 0.6, "value": "MEDIUM" } ] } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "db": "CNNVD", "id": "CNNVD-201204-325" }, { "db": "NVD", "id": "CVE-2012-0551" } ] }, "description": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 update 4 and earlier and 6 update 32 and earlier, and the GlassFish Enterprise Server component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Web Container or Deployment. Oracle GlassFish Server Is Web There are vulnerabilities that affect confidentiality and integrity due to incomplete handling of containers.There is a possibility that information will be leaked or altered by a third party. \nSuccessful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible. \nThis vulnerability affects the following supported versions:\nGlassFish Enterprise Server 3.1.1. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Critical: java-1.6.0-sun security update\nAdvisory ID: RHSA-2012:0734-01\nProduct: Red Hat Enterprise Linux Extras\nAdvisory URL: https://rhn.redhat.com/errata/RHSA-2012-0734.html\nIssue date: 2012-06-13\nCVE Names: CVE-2012-0551 CVE-2012-1711 CVE-2012-1713 \n CVE-2012-1716 CVE-2012-1717 CVE-2012-1718 \n CVE-2012-1719 CVE-2012-1721 CVE-2012-1722 \n CVE-2012-1723 CVE-2012-1724 CVE-2012-1725 \n=====================================================================\n\n1. Summary:\n\nUpdated java-1.6.0-sun packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary. \n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64\nRed Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node Supplementary (v. 6) - x86_64\nRed Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64\nRed Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64\n\n3. Description:\n\nThe Sun 1.6.0 Java release includes the Sun Java 6 Runtime Environment and\nthe Sun Java 6 Software Development Kit. \n\nThis update fixes several vulnerabilities in the Sun Java 6 Runtime\nEnvironment and the Sun Java 6 Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch page, listed in the References section. (CVE-2012-0551,\nCVE-2012-1711, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717, CVE-2012-1718,\nCVE-2012-1719, CVE-2012-1721, CVE-2012-1722, CVE-2012-1723, CVE-2012-1724,\nCVE-2012-1725)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide JDK and JRE 6 Update 33 and resolve these issues. \nAll running instances of Sun Java must be restarted for the update to take\neffect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258\n\n5. Bugs fixed (http://bugzilla.redhat.com/):\n\n829354 - CVE-2012-1711 OpenJDK: improper protection of CORBA data models (CORBA, 7079902)\n829358 - CVE-2012-1717 OpenJDK: insecure temporary file permissions (JRE, 7143606)\n829360 - CVE-2012-1716 OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)\n829361 - CVE-2012-1713 OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)\n829371 - CVE-2012-1719 OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)\n829372 - CVE-2012-1718 OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)\n829373 - CVE-2012-1723 OpenJDK: insufficient field accessibility checks (HotSpot, 7152811)\n829374 - CVE-2012-1724 OpenJDK: XML parsing infinite loop (JAXP, 7157609)\n829376 - CVE-2012-1725 OpenJDK: insufficient invokespecial \u003cinit\u003e verification (HotSpot, 7160757)\n831353 - CVE-2012-1721 Oracle JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)\n831354 - CVE-2012-1722 Oracle JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)\n831355 - CVE-2012-0551 Oracle JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop Supplementary (v. 5):\n\ni386:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.i586.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\n\nRed Hat Enterprise Linux Server Supplementary (v. 5):\n\ni386:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.i586.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.i586.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el5_8.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop Supplementary (v. 6):\n\ni386:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.i686.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Supplementary (v. 6):\n\nx86_64:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\n\nRed Hat Enterprise Linux Server Supplementary (v. 6):\n\ni386:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.i686.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Supplementary (v. 6):\n\ni386:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.i686.rpm\n\nx86_64:\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-demo-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.i686.rpm\njava-1.6.0-sun-devel-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-jdbc-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-plugin-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\njava-1.6.0-sun-src-1.6.0.33-1jpp.1.el6_2.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2012-0551.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1711.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1713.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1716.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1717.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1718.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1719.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1721.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1722.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1723.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1724.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1725.html\nhttps://access.redhat.com/security/updates/classification/#critical\nhttp://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2012 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.4 (GNU/Linux)\n\niD8DBQFP2PdfXlSAg2UNWIIRAmPoAKC0e7v7/kro/BSlg3WvTcUuUsY5GwCgnIxh\nyIn7jJFAEdlZRgCuCNL1mk0=\n=TbeE\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nAPPLE-SA-2012-06-12-1 Java for OS X 2012-004 and Java for\nMac OS X 10.6 Update 9\n\nJava for OS X 2012-004 and Java for Mac OS X 10.6 Update 9 is now\navailable and addresses the following:\n\nJava\nAvailable for: Mac OS X v10.6.8, Mac OS X Server v10.6.8,\nOS X Lion v10.7.4, OS X Lion Server v10.7.4\nImpact: Multiple vulnerabilities in Java\nDescription: Multiple vulnerabilities exist in Java, the most\nserious of which may allow an untrusted Java applet to execute\narbitrary code outside the Java sandbox. \nThese issues are addressed by updating to Java version 1.6.0_33. \nFurther information is available via the Java website at http://www.o\nracle.com/technetwork/java/javase/releasenotes-136954.html\nCVE-ID\nCVE-2012-0551\nCVE-2012-1711\nCVE-2012-1713\nCVE-2012-1716\nCVE-2012-1718\nCVE-2012-1719\nCVE-2012-1721\nCVE-2012-1722\nCVE-2012-1723\nCVE-2012-1724\nCVE-2012-1725\n\nJava\nAvailable for: Mac OS X v10.6.8, Mac OS X Server v10.6.8\nImpact: The Java browser plugin and Java Web Start are deactivated\nif they remain unused for 35 days\nDescription: As a security hardening measure, the Java browser\nplugin and Java Web Start are deactivated if they are unused for 35\ndays. Installing this update will automatically deactivate the Java\nbrowser plugin and Java Web Start. Users may re-enable Java if they\nencounter Java applets on a web page or Java Web Start applications\nby clicking the region labeled \"Inactive plug-in\" on a web page. This\nsecurity measure is also available for OS Lion systems if the prior\nupdate \"Java for OS X 2012-003\" was not installed. \n\nJava\nAvailable for: Mac OS X v10.6.8, Mac OS X Server v10.6.8,\nOS X Lion v10.7.4, OS X Lion Server v10.7.4\nImpact: The Java browser plugin and Java Web Start are deactivated\nif they do not meet the criteria for minimum safe version\nDescription: As a security hardening measure, the Java browser\nplugin and Java Web Start are deactivated if they do not meet the\ncriteria for minimum safe version. The minimum safe version of Java\nis updated daily, as needed. \n\nNote: These updates include the security content from Java for\nOS X 2012-003 and Java for Mac OS X 10.6 Update 8. \n\n\nJava for OS X 2012-004 and Java for Mac OS X 10.6 Update 9\nmay be obtained from the Software Update pane in System Preferences,\nor Apple\u0027s Software Downloads web site:\nhttp://www.apple.com/support/downloads/\n\nFor Mac OS X v10.6 systems\nThe download file is named: JavaForMacOSX10.6.dmg\nIts SHA-1 digest is: c2fcc844b7073d8243588f3407eb3ce1d497043d\n\nFor OS X Lion systems\nThe download file is named: JavaForOSX.dmg\nIts SHA-1 digest is: f176546327bc62d8cd397d54d1dc22b72aee1d2b\n\nInformation will also be posted to the Apple Security Updates\nweb site: http://support.apple.com/kb/HT1222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG/MacGPG2 v2.0.17 (Darwin)\nComment: GPGTools - http://gpgtools.org\n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\nlTEVodir4Ubn3QZQ0SK7\n=J235\n-----END PGP SIGNATURE-----\n. In a typical operating environment, these are of low security risk as\nthe runtime is not used on untrusted applets. ----------------------------------------------------------------------\n\nBecome a PSI 3.0 beta tester!\nTest-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface. \nDownload it here!\nhttp://secunia.com/psi_30_beta_launch\n\n----------------------------------------------------------------------\n\nTITLE:\nOracle GlassFish Enterprise Server Cross-Site Scripting and Request\nForgery\n\nSECUNIA ADVISORY ID:\nSA48798\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/48798/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=48798\n\nRELEASE DATE:\n2012-04-18\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/48798/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/48798/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=48798\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nSecurity-Assessment.com has reported some vulnerabilities in Oracle\nGlassFish Enterprise Server, which can be exploited by malicious\npeople to conduct cross-site scripting and request forgery attacks. \n\n1) The application allows users to perform certain actions via HTTP\nrequests without performing proper validity checks to verify the\nrequests. This can be exploited to e.g. uploading an arbitrary WAR\narchive by tricking a logged-in administrator into visiting a\nspecially crafted web page. \n\n2) Input passed via multiple parameters to various scripts is not\nproperly sanitised before being returned to the user. \n\nThe vulnerabilities are reported in version 3.1.1 (build 12). \n\nSOLUTION:\nApply patch (please see the vendor\u0027s advisory for details). \n\nPROVIDED AND/OR DISCOVERED BY:\nRoberto Suggi Liverani, Security-Assessment.com. \n\nORIGINAL ADVISORY:\nOracle:\nhttps://blogs.oracle.com/security/entry/april_2012_critical_patch_update\nhttp://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html#AppendixSUNS\n\nSecurity-Assessment.com:\nhttp://www.security-assessment.com/files/documents/advisory/Oracle_GlassFish_Server_REST_CSRF.pdf\nhttp://www.security-assessment.com/files/documents/advisory/Oracle_GlassFish_Server_Multiple_XSS.pdf\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c03441075\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c03441075\nVersion: 1\n\nHPSBUX02805 SSRT100919 rev.1 - HP-UX Running Java, Remote Unauthorized\nAccess, Disclosure of Information, and Other Vulnerabilities\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2012-08-13\nLast Updated: 2012-08-13\n\n- -----------------------------------------------------------------------------\n\nPotential Security Impact: Remote unauthorized access, disclosure of\ninformation, and other vulnerabilities\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified in Java Runtime\nEnvironment (JRE) and Java Developer Kit (JDK) running on HP-UX. These\nvulnerabilities could allow remote unauthorized access, disclosure of\ninformation, and other vulnerabilities. \n\nReferences: CVE-2012-0508, CVE-2012-0551, CVE-2012-1711, CVE-2012-1713,\nCVE-2012-1716, CVE-2012-1718, CVE-2012-1719, CVE-2012-1720, CVE-2012-1721,\nCVE-2012-1722, CVE-2012-1723, CVE-2012-1724, CVE-2012-1725, CVE-2012-1726\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP-UX B.11.11, B.11.23, and B.11.31 running HP JDK and JRE 7.0.02 and 6.0.15\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2012-0508 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-0551 (AV:N/AC:M/Au:N/C:P/I:P/A:N) 5.8\nCVE-2012-1711 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2012-1713 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-1716 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-1718 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2012-1719 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2012-1720 (AV:L/AC:H/Au:N/C:P/I:P/A:P) 3.7\nCVE-2012-1721 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-1722 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-1723 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-1724 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2012-1725 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-1726 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following Java version upgrade to resolve these\nvulnerabilities. \nThe upgrade is available from the following location\n\nhttp://www.hp.com/go/java\n\nHP-UX B.11.23, B.11.31 / JDK and JRE v7.0.02 or subsequent\n\nHP-UX B.11.23, B.11.31 / JDK and JRE v6.0.15 or subsequent\n\nHP-UX B.11.11, B.11.23 / JDK and JRE v6.0.15 or subsequent\n\nMANUAL ACTIONS: Yes - Update\nFor Java v7.0 update to Java v7.0.02 or subsequent\nFor Java v6.0 update to Java v6.0.15 or subsequent\n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nHP-UX B.11.23\nHP-UX B.11.31\n===========\nJdk70.JDK70-COM\nJdk70.JDK70-DEMO\nJdk70.JDK70-IPF32\nJdk70.JDK70-IPF64\nJre70.JRE70-COM\nJre70.JRE70-IPF32\nJre70.JRE70-IPF32-HS\nJre70.JRE70-IPF64\nJre70.JRE70-IPF64-HS\naction: install revision 1.7.0.02.00 or subsequent\n\nHP-UX B.11.23\nHP-UX B.11.31\n===========\nJdk60.JDK60-COM\nJdk60.JDK60-DEMO\nJdk60.JDK60-IPF32\nJdk60.JDK60-IPF64\nJre60.JRE60-COM\nJre60.JRE60-IPF32\nJre60.JRE60-IPF32-HS\nJre60.JRE60-IPF64\nJre60.JRE60-IPF64-HS\naction: install revision 1.6.0.15.00 or subsequent\n\nHP-UX B.11.11\nHP-UX B.11.23\n===========\nJdk60.JDK60-COM\nJdk60.JDK60-DEMO\nJdk60.JDK60-PA20\nJdk60.JDK60-PA20W\nJre60.JRE60-COM\nJre60.JRE60-COM-DOC\nJre60.JRE60-PA20\nJre60.JRE60-PA20-HS\nJre60.JRE60-PA20W\nJre60.JRE60-PA20W-HS\naction: install revision 1.6.0.15.00 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) - 13 August 2012 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin List: A list of HP Security Bulletins, updated\nperiodically, is contained in HP Security Notice HPSN-2011-001:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c02964430\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttp://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2012 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits;damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners", "sources": [ { "db": "NVD", "id": "CVE-2012-0551" }, { "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "db": "BID", "id": "53136" }, { "db": "PACKETSTORM", "id": "113609" }, { "db": "PACKETSTORM", "id": "113613" }, { "db": "PACKETSTORM", "id": "116312" }, { "db": "PACKETSTORM", "id": "123734" }, { "db": "PACKETSTORM", "id": "112075" }, { "db": "PACKETSTORM", "id": "115980" }, { "db": "PACKETSTORM", "id": "115550" } ], "trust": 2.52 }, "external_ids": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "db": "NVD", "id": "CVE-2012-0551", "trust": 3.4 }, { "db": "BID", "id": "53136", "trust": 1.9 }, { "db": "SECTRACK", "id": "1026941", "trust": 1.6 }, { "db": "JVNDB", "id": "JVNDB-2012-002328", "trust": 0.8 }, { "db": "CNNVD", "id": "CNNVD-201204-325", "trust": 0.6 }, { "db": "ICS CERT", "id": "ICSA-17-213-02", "trust": 0.3 }, { "db": "PACKETSTORM", "id": "112061", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "113609", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "113613", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "116312", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "123734", "trust": 0.1 }, { "db": "SECUNIA", "id": "48798", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "112075", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "115980", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "115550", "trust": 0.1 } ], "sources": [ { "db": "BID", "id": "53136" }, { "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "db": "PACKETSTORM", "id": "112061" }, { "db": "PACKETSTORM", "id": "113609" }, { "db": "PACKETSTORM", "id": "113613" }, { "db": "PACKETSTORM", "id": "116312" }, { "db": "PACKETSTORM", "id": "123734" }, { "db": "PACKETSTORM", "id": "112075" }, { "db": "PACKETSTORM", "id": "115980" }, { "db": "PACKETSTORM", "id": "115550" }, { "db": "CNNVD", "id": "CNNVD-201204-325" }, { "db": "NVD", "id": "CVE-2012-0551" } ] }, "id": "VAR-201205-0058", "iot": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": true, "sources": [ { "db": "VARIoT devices database", "id": null } ], "trust": 1.0 }, "last_update_date": "2024-11-29T20:51:24.828000Z", "patch": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "title": "HT5319", "trust": 0.8, "url": "http://support.apple.com/kb/HT5319" }, { "title": "HPSBUX02805 SSRT100919", "trust": 0.8, "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c03441075" }, { "title": "SUSE-SU-2012:1231", "trust": 0.8, "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html" }, { "title": "SUSE-SU-2012:1265", "trust": 0.8, "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html" }, { "title": "Oracle Java SE Critical Patch Update Advisory - June 2012", "trust": 0.8, "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "title": "Oracle Critical Patch Update Advisory - April 2012", "trust": 0.8, "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html" }, { "title": "RHSA-2013:1455", "trust": 0.8, "url": "https://rhn.redhat.com/errata/RHSA-2013-1455.html" }, { "title": "RHSA-2013:1456", "trust": 0.8, "url": "https://rhn.redhat.com/errata/RHSA-2013-1456.html" }, { "title": "April 2012 Critical Patch Update Released", "trust": 0.8, "url": "https://blogs.oracle.com/security/entry/april_2012_critical_patch_update" }, { "title": "Oracle Sun Products Suite GlassFish Enterprise Server Security vulnerabilities", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=192727" } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "db": "CNNVD", "id": "CNNVD-201204-325" } ] }, "problemtype_data": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "problemtype": "NVD-CWE-noinfo", "trust": 1.0 } ], "sources": [ { "db": "NVD", "id": "CVE-2012-0551" } ] }, "references": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "trust": 2.0, "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html" }, { "trust": 1.9, "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html" }, { "trust": 1.7, "url": "http://rhn.redhat.com/errata/rhsa-2012-0734.html" }, { "trust": 1.7, "url": "http://rhn.redhat.com/errata/rhsa-2013-1455.html" }, { "trust": 1.6, "url": "http://rhn.redhat.com/errata/rhsa-2013-1456.html" }, { "trust": 1.6, "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html" }, { "trust": 1.6, "url": "http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html" }, { "trust": 1.6, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16707" }, { "trust": 1.6, "url": "http://www.securityfocus.com/bid/53136" }, { "trust": 1.6, "url": "http://www.securitytracker.com/id?1026941" }, { "trust": 1.6, "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2013:150" }, { "trust": 1.6, "url": "http://marc.info/?l=bugtraq\u0026m=134496371727681\u0026w=2" }, { "trust": 0.8, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-0551" }, { "trust": 0.8, "url": "http://jvn.jp/cert/jvnvu162931/" }, { "trust": 0.8, "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-0551" }, { "trust": 0.7, "url": "http://www.ibm.com/developerworks/java/jdk/alerts/" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0551" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1718" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1713" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1721" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1725" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1722" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1716" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1719" }, { "trust": 0.4, "url": "http://www.security-assessment.com/files/documents/advisory/oracle_glassfish_server_multiple_xss.pdf" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1711" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1723" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1724" }, { "trust": 0.3, "url": "http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c03441075\u0026ac.admitted=1344943226168.876444892.199480143" }, { "trust": 0.3, "url": "http://java.sun.com" }, { "trust": 0.3, "url": "http://www.ibm.com/support/docview.wss?uid=swg21617984" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24033779" }, { "trust": 0.3, "url": "http://support.attachmate.com/techdocs/2560.html" }, { "trust": 0.3, "url": "http://www.xerox.com/download/security/security-bulletin/16aeb-4cd3628b94080/cert_xrx12-009_v1.1.pdf" }, { "trust": 0.3, "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-213-02" }, { "trust": 0.3, "url": "http://h20565.www2.hp.com/portal/site/hpsc/template.page/public/kb/docdisplay/?docid=emr_na-c03909126-1\u0026ac.admitted=1378134276525.876444892.492883150" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21614441" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21620862" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21618977" }, { "trust": 0.3, "url": "http://www.vmware.com/security/advisories/vmsa-2012-0013.html" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-1725.html" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-1718.html" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-1717.html" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-1722.html" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-0551.html" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-1721.html" }, { "trust": 0.3, "url": "https://access.redhat.com/security/team/contact/" }, { "trust": 0.3, "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1717" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-1719.html" }, { "trust": 0.3, "url": "https://access.redhat.com/security/team/key/#package" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-1716.html" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2012-1713.html" }, { "trust": 0.3, "url": "http://bugzilla.redhat.com/):" }, { "trust": 0.2, "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "trust": 0.2, "url": "https://access.redhat.com/knowledge/articles/11258" }, { "trust": 0.2, "url": "http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/" }, { "trust": 0.2, "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins" }, { "trust": 0.2, "url": "http://www.hp.com/go/java" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1720" }, { "trust": 0.2, "url": "https://www.hp.com/go/swa" }, { "trust": 0.2, "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1726" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-1711.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-1723.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-1724.html" }, { "trust": 0.1, "url": "http://www.apple.com/support/downloads/" }, { "trust": 0.1, "url": "https://www.apple.com/support/security/pgp/" }, { "trust": 0.1, "url": "http://support.apple.com/kb/ht1222" }, { "trust": 0.1, "url": "http://www.o" }, { "trust": 0.1, "url": "http://gpgtools.org" }, { "trust": 0.1, "url": "https://rhn.redhat.com/errata/rhsa-2012-1238.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2468.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0873.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3548.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1540.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1476.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2463.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2446.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3521" }, { "trust": 0.1, "url": "https://access.redhat.com/site/articles/11258" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1500.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0428.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1480.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3556.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2419.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3563.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3546" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0401.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2444.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0425.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2454.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5089.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3551.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5079.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0497.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0500.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0419.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3389.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2422.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3561.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5081.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0409.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5071.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0863.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0423.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-1532.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-3216.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5069.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0499.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0862" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0867.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5084.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0443.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0507.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2451.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3552.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0809.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1487.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0351.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0814.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3547.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-4820.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3549" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0503.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0427.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0433.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1493.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1569.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5073.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3554.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-4823.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2435.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2456.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-3743.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3549.html" }, { "trust": 0.1, "url": "https://access.redhat.com/security/updates/classification/#low" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2407.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3553" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3516.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0871.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3554" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2470.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5068.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-1541.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0868.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3389" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-4822.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0873" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-3159.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1557.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5075.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2471.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2429.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3548" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3521.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3551" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2443.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3547" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-3213.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0441.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2457.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2412.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5072.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3553.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0432.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0446.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1481.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1537.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3545" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-1531.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2432.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2447.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0802.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2452.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0865.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0450.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3516" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3545.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1491.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2464.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0862.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1571.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2383.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2418.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3561" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1473.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3556" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0547.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1563.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2465.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2472.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2466.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2424.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2453.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3544.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0867" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2473.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2433.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2437.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0506.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-5083.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0501.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-1533.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-3342.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0869" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0426.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2450.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3560.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3550" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3557.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-3143.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0440.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0865" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0502.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2417.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0445.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2394.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2455.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0498.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-1682.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2442.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2459.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2430.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3560" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3546.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0442.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0424.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3552" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3544" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-0869.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2448.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0863" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-3550.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1486.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2011-5035.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3557" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2384.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0169.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2012-0505.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2469.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0438.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0871" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0868" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1478.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0435.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0434.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0802" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-0814" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2420.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2440.html" }, { "trust": 0.1, "url": "http://secunia.com/advisories/48798/" }, { "trust": 0.1, "url": "http://secunia.com/psi_30_beta_launch" }, { "trust": 0.1, "url": "http://secunia.com/vulnerability_intelligence/" }, { "trust": 0.1, "url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/" }, { "trust": 0.1, "url": "http://secunia.com/advisories/secunia_security_advisories/" }, { "trust": 0.1, "url": "http://secunia.com/advisories/about_secunia_advisories/" }, { "trust": 0.1, "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=48798" }, { "trust": 0.1, "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html#appendixsuns" }, { "trust": 0.1, "url": "http://secunia.com/vulnerability_scanning/personal/" }, { "trust": 0.1, "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org" }, { "trust": 0.1, "url": "https://blogs.oracle.com/security/entry/april_2012_critical_patch_update" }, { "trust": 0.1, "url": "http://www.security-assessment.com/files/documents/advisory/oracle_glassfish_server_rest_csrf.pdf" }, { "trust": 0.1, "url": "http://secunia.com/advisories/48798/#comments" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0508" } ], "sources": [ { "db": "BID", "id": "53136" }, { "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "db": "PACKETSTORM", "id": "112061" }, { "db": "PACKETSTORM", "id": "113609" }, { "db": "PACKETSTORM", "id": "113613" }, { "db": "PACKETSTORM", "id": "116312" }, { "db": "PACKETSTORM", "id": "123734" }, { "db": "PACKETSTORM", "id": "112075" }, { "db": "PACKETSTORM", "id": "115980" }, { "db": "PACKETSTORM", "id": "115550" }, { "db": "CNNVD", "id": "CNNVD-201204-325" }, { "db": "NVD", "id": "CVE-2012-0551" } ] }, "sources": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", "data": { "@container": "@list" } }, "data": [ { "db": "BID", "id": "53136" }, { "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "db": "PACKETSTORM", "id": "112061" }, { "db": "PACKETSTORM", "id": "113609" }, { "db": "PACKETSTORM", "id": "113613" }, { "db": "PACKETSTORM", "id": "116312" }, { "db": "PACKETSTORM", "id": "123734" }, { "db": "PACKETSTORM", "id": "112075" }, { "db": "PACKETSTORM", "id": "115980" }, { "db": "PACKETSTORM", "id": "115550" }, { "db": "CNNVD", "id": "CNNVD-201204-325" }, { "db": "NVD", "id": "CVE-2012-0551" } ] }, "sources_release_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2012-04-18T00:00:00", "db": "BID", "id": "53136" }, { "date": "2012-05-09T00:00:00", "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "date": "2012-04-21T00:22:34", "db": "PACKETSTORM", "id": "112061" }, { "date": "2012-06-13T22:56:24", "db": "PACKETSTORM", "id": "113609" }, { "date": "2012-06-13T23:29:16", "db": "PACKETSTORM", "id": "113613" }, { "date": "2012-09-07T03:06:46", "db": "PACKETSTORM", "id": "116312" }, { "date": "2013-10-23T22:57:57", "db": "PACKETSTORM", "id": "123734" }, { "date": "2012-04-21T04:53:58", "db": "PACKETSTORM", "id": "112075" }, { "date": "2012-08-29T04:01:09", "db": "PACKETSTORM", "id": "115980" }, { "date": "2012-08-15T01:42:25", "db": "PACKETSTORM", "id": "115550" }, { "date": "2012-04-20T00:00:00", "db": "CNNVD", "id": "CNNVD-201204-325" }, { "date": "2012-05-03T18:55:01.590000", "db": "NVD", "id": "CVE-2012-0551" } ] }, "sources_update_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2017-08-02T18:09:00", "db": "BID", "id": "53136" }, { "date": "2015-08-11T00:00:00", "db": "JVNDB", "id": "JVNDB-2012-002328" }, { "date": "2022-05-16T00:00:00", "db": "CNNVD", "id": "CNNVD-201204-325" }, { "date": "2024-11-21T01:35:13.630000", "db": "NVD", "id": "CVE-2012-0551" } ] }, "threat_type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "remote", "sources": [ { "db": "PACKETSTORM", "id": "115980" }, { "db": "PACKETSTORM", "id": "115550" }, { "db": "CNNVD", "id": "CNNVD-201204-325" } ], "trust": 0.8 }, "title": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Oracle GlassFish Server In Web Container handling vulnerabilities", "sources": [ { "db": "JVNDB", "id": "JVNDB-2012-002328" } ], "trust": 0.8 }, "type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "lack of information", "sources": [ { "db": "CNNVD", "id": "CNNVD-201204-325" } ], "trust": 0.6 } }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.