OVAL Reference oval:org.mitre.oval:def:27028

CVE-2014-6457) Several vulnerabilities were discovered in the OpenJDK JRE related to data integrity. (CVE-2014-6502, CVE-2014-6512, CVE-2014-6519, CVE-2014-6527, CVE-2014-6558) Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure. An attacker could exploit these to expose sensitive data over the network. (CVE-2014-6504, CVE-2014-6511, CVE-2014-6517, CVE-2014-6531) Two vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity and availability. An attacker could exploit these to cause a denial of service or expose sensitive data over the network. (CVE-2014-6506, CVE-2014-6513)"> OVAL Reference oval:org.mitre.oval:def:27028 - CERT Civis.Net

Oval Definition:

oval:org.mitre.oval:def:27028

Revision Date:	2014-12-08	Version:	3
Title:	USN-2388-2 -- OpenJDK 7 vulnerabilities
Description:	USN-2388-1 fixed vulnerabilities in OpenJDK 7 for Ubuntu 14.04 LTS. Thisupdate provides the corresponding updates for Ubuntu 14.10.Original advisory details: A vulnerability was discovered in the OpenJDK JRE related to information disclosure and data integrity. An attacker could exploit this to expose sensitive data over the network. (CVE-2014-6457) Several vulnerabilities were discovered in the OpenJDK JRE related to data integrity. (CVE-2014-6502, CVE-2014-6512, CVE-2014-6519, CVE-2014-6527, CVE-2014-6558) Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure. An attacker could exploit these to expose sensitive data over the network. (CVE-2014-6504, CVE-2014-6511, CVE-2014-6517, CVE-2014-6531) Two vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity and availability. An attacker could exploit these to cause a denial of service or expose sensitive data over the network. (CVE-2014-6506, CVE-2014-6513)
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6513 CVE-2014-6517 CVE-2014-6519 CVE-2014-6527 CVE-2014-6531 CVE-2014-6558 USN-2388-2
Platform(s):	Ubuntu 14.10	Product(s):	openjdk-7
Definition Synopsis
Ubuntu 14.10 is installed AND Packages match section openjdk-7-jre-lib is earlier than 0:7u71-2.5.3-0ubuntu1 OR openjdk-7-jre-zero is earlier than 0:7u71-2.5.3-0ubuntu1 OR icedtea-7-jre-jamvm is earlier than 0:7u71-2.5.3-0ubuntu1 OR openjdk-7-jre-headless is earlier than 0:7u71-2.5.3-0ubuntu1 OR openjdk-7-jre is earlier than 0:7u71-2.5.3-0ubuntu1

BACK