Oval Definition:oval:com.redhat.rhsa:def:20130156
Revision Date:2013-01-14Version:502
Title:RHSA-2013:0156: java-1.7.0-oracle security update (Critical)
Description:Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.

  • This update fixes two vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Security Alert page, listed in the References section. (CVE-2012-3174, CVE-2013-0422)

    Red Hat is aware that a public exploit for CVE-2013-0422 is available that executes code without user interaction when a user visits a malicious web page using a browser with the Oracle Java 7 web browser plug-in enabled.

    All users of java-1.7.0-oracle are advised to upgrade to these updated packages, which provide Oracle Java 7 Update 11 and resolve these issues. All running instances of Oracle Java must be restarted for the update to take effect.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2012-3174
    CVE-2013-0422
    RHSA-2013:0156-01
    Platform(s):Supplementary for Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND Package Information
  • java-1.7.0-oracle is earlier than 1:1.7.0.11-1jpp.3.el6_3
  • AND java-1.7.0-oracle is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-src is earlier than 1:1.7.0.11-1jpp.3.el6_3
  • AND java-1.7.0-oracle-src is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-javafx is earlier than 1:1.7.0.11-1jpp.3.el6_3
  • AND java-1.7.0-oracle-javafx is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-plugin is earlier than 1:1.7.0.11-1jpp.3.el6_3
  • AND java-1.7.0-oracle-plugin is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-jdbc is earlier than 1:1.7.0.11-1jpp.3.el6_3
  • AND java-1.7.0-oracle-jdbc is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-devel is earlier than 1:1.7.0.11-1jpp.3.el6_3
  • AND java-1.7.0-oracle-devel is signed with Red Hat redhatrelease2 key
    • BACK