Oval Definition:oval:org.mitre.oval:def:23009
Revision Date:2014-05-26Version:20
Title:ELSA-2013:0603: java-1.7.0-openjdk security update (Important)
Description:The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (crash) via an image with crafted raster parameters, which triggers (1) an out-of-bounds read or (2) memory corruption in the JVM, as exploited in the wild in February 2013.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2013-0809
CVE-2013-1493
ELSA-2013:0603-00
Platform(s):Oracle Linux 5
Product(s):java-1.7.0-openjdk
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • java-1.7.0-openjdk-src is earlier than 1:1.7.0.9-2.3.8.0.el5_9
  • OR java-1.7.0-openjdk-demo is earlier than 1:1.7.0.9-2.3.8.0.el5_9
  • OR java-1.7.0-openjdk-javadoc is earlier than 1:1.7.0.9-2.3.8.0.el5_9
  • OR java-1.7.0-openjdk-devel is earlier than 1:1.7.0.9-2.3.8.0.el5_9
  • OR java-1.7.0-openjdk is earlier than 1:1.7.0.9-2.3.8.0.el5_9
    • BACK