Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2013-1475

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "IIOP type reuse management" in ObjectStreamClass.java.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.oracle.com/...
REDHAT: RHSA-2013:0236
REDHAT: RHSA-2013:0237
CERT: TA13-032A
CERT-VN: VU#858729
CONFIRM: http://icedtea.classpa...
CONFIRM: http://icedtea.classpa...
CONFIRM: https://bugzilla.redha...
REDHAT: RHSA-2013:0245
REDHAT: RHSA-2013:0246
REDHAT: RHSA-2013:0247
SUSE: openSUSE-SU-2013:0312
SUSE: openSUSE-SU-2013:0377
CONFIRM: http://www-01.ibm.com/...
CONFIRM: https://wiki.mageia.or...
MANDRIVA: MDVSA-2013:095
GENTOO: GLSA-201406-32
HP: HPSBUX02864
HP: SSRT101156
HP: HPSBMU02874
HP: HPSBUX02857
HP: SSRT101103
HP: SSRT101184
BID: 57694
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...

Launchpad.net

CVE 2013-1475

Related bugs

References