CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
97.5%
Package : openjdk-6
Version : 6b33-1.13.5-2~deb6u1
CVE ID : CVE-2014-2490 CVE-2014-4209 CVE-2014-4216 CVE-2014-4218 CVE-2014-4219
CVE-2014-4244 CVE-2014-4252 CVE-2014-4262 CVE-2014-4263 CVE-2014-4266
CVE-2014-4268 CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506
CVE-2014-6511 CVE-2014-6512 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531
CVE-2014-6558
Several vulnerabilities have been discovered in OpenJDK, an implementation
of the Oracle Java platform, resulting in the execution of arbitrary code,
breakouts of the Java sandbox, information disclosure or denial of service.
For Debian 6 “Squeeze”, these problems have been fixed in version
6b33-1.13.5-2~deb6u1.
We recommend that you upgrade your openjdk-6 packages and that you
subscribe to https://lists.debian.org/debian-lts/ to help test updated
packages before we release them.
Raphaël Hertzog ◈ Debian Developer
Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/
Attachment:
signature.asc
Description: Digital signature