Oval Definition:oval:org.mitre.oval:def:24037
Revision Date:2014-05-26Version:112
Title:ELSA-2014:0135: java-1.6.0-ibm security update (Critical)
Description:Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA.NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to "insufficient security checks in IIOP streams," which allows attackers to escape the sandbox.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2013-5878
CVE-2013-5884
CVE-2013-5887
CVE-2013-5888
CVE-2013-5889
CVE-2013-5896
CVE-2013-5898
CVE-2013-5899
CVE-2013-5907
CVE-2013-5910
CVE-2014-0368
CVE-2014-0373
CVE-2014-0375
CVE-2014-0376
CVE-2014-0387
CVE-2014-0403
CVE-2014-0410
CVE-2014-0411
CVE-2014-0415
CVE-2014-0416
CVE-2014-0417
CVE-2014-0422
CVE-2014-0423
CVE-2014-0424
CVE-2014-0428
ELSA-2014:0135-00
Platform(s):Oracle Linux 6
Product(s):java-1.6.0-ibm
Definition Synopsis
  • Oracle Linux 6.x
  • AND rpm test
  • java-1.6.0-ibm-plugin is earlier than 1:1.6.0.15.1-1jpp.1.el6_5
  • OR java-1.6.0-ibm is earlier than 1:1.6.0.15.1-1jpp.1.el6_5
  • OR java-1.6.0-ibm-demo is earlier than 1:1.6.0.15.1-1jpp.1.el6_5
  • OR java-1.6.0-ibm-jdbc is earlier than 1:1.6.0.15.1-1jpp.1.el6_5
  • OR java-1.6.0-ibm-devel is earlier than 1:1.6.0.15.1-1jpp.1.el6_5
  • OR java-1.6.0-ibm-javacomm is earlier than 1:1.6.0.15.1-1jpp.1.el6_5
  • OR java-1.6.0-ibm-src is earlier than 1:1.6.0.15.1-1jpp.1.el6_5
  • BACK