Oval Definition:oval:org.mitre.oval:def:24180
Revision Date:2014-05-26Version:64
Title:ELSA-2014:0097: java-1.6.0-openjdk security update (Important)
Description:Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA.NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to "insufficient security checks in IIOP streams," which allows attackers to escape the sandbox.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2013-5878
CVE-2013-5884
CVE-2013-5896
CVE-2013-5907
CVE-2013-5910
CVE-2014-0368
CVE-2014-0373
CVE-2014-0376
CVE-2014-0411
CVE-2014-0416
CVE-2014-0422
CVE-2014-0423
CVE-2014-0428
ELSA-2014:0097-00
Platform(s):Oracle Linux 5
Oracle Linux 6
Product(s):java-1.6.0-openjdk
Definition Synopsis
  • rpm test
  • Oracle Linux 5.x
  • AND rpm test
  • java-1.6.0-openjdk is earlier than 1:1.6.0.0-3.1.13.1.el5_10
  • OR java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-3.1.13.1.el5_10
  • OR java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-3.1.13.1.el5_10
  • OR java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-3.1.13.1.el5_10
  • OR java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-3.1.13.1.el5_10
  • OR rpm test
  • Oracle Linux 6.x
  • AND rpm test
  • java-1.6.0-openjdk is earlier than 1:1.6.0.0-3.1.13.1.el6_5
  • OR java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-3.1.13.1.el6_5
  • OR java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-3.1.13.1.el6_5
  • OR java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-3.1.13.1.el6_5
  • OR java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-3.1.13.1.el6_5
    • BACK