Lucene search
SuseSUSE-SU-2013:1254-1HistoryJul 25, 2013 - 4:04 p.m.
Security update for java-1_7_0-openjdk (important)
2013-07-2516:04:14
lists.opensuse.org
24
0.968 High
EPSS
Percentile
99.7%
This update to icedtea-2.4.1 fixes various security issues:
- S6741606, CVE-2013-2407: Integrate Apache Santuario
- S7158805, CVE-2013-2445: Better rewriting of nested
subroutine calls - S7170730, CVE-2013-2451: Improve Windows network
stack support. - S8000638, CVE-2013-2450: Improve deserialization
- S8000642, CVE-2013-2446: Better handling of objects
for transportation - S8001033, CVE-2013-2452: Refactor network address
handling in virtual machine identifiers - S8001034, CVE-2013-1500: Memory management
improvements - S8001038, CVE-2013-2444: Resourcefully handle
resources - S8001318, CVE-2013-2447: Socket.getLocalAddress not
consistent with InetAddress.getLocalHost - S8001330, CVE-2013-2443: Improve on checking order
(non-Zero builds only) - S8003703, CVE-2013-2412: Update RMI connection dialog
box - S8004288, CVE-2013-2449: (fs) Files.probeContentType
problems - S8006328, CVE-2013-2448: Improve robustness of sound
classes - S8007812, CVE-2013-2455: (reflect)
Class.getEnclosingMethod problematic for some classes - S8008120, CVE-2013-2457: Improve JMX class checking
- S8008124, CVE-2013-2453: Better compliance testing
- S8008132, CVE-2013-2456: Better serialization support
- S8008744, CVE-2013-2407: Rework part of fix for
JDK-6741606 - S8009057, CVE-2013-2448: Improve MIDI event handling
- S8009071, CVE-2013-2459: Improve shape handling
- S8009424, CVE-2013-2458: Adapt Nashorn to JSR-292
implementation change - S8009554, CVE-2013-2454: Improve
SerialJavaObject.getFields - S8010209, CVE-2013-2460: Better provision of factories
- S8011243, CVE-2013-2470: Improve ImagingLib
- S8011248, CVE-2013-2471: Better Component Rasters
- S8011253, CVE-2013-2472: Better Short Component
Rasters - S8011257, CVE-2013-2473: Better Byte Component Rasters
- S8012375, CVE-2013-1571: Improve Javadoc framing
- S8012438, CVE-2013-2463: Better image validation
- S8012597, CVE-2013-2465: Better image channel
verification - S8012601, CVE-2013-2469: Better validation of image
layouts - S8014281, CVE-2013-2461: Better checking of XML
signature
Related
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2013-204)
2015-09-08 00:00:00
Debian Security Advisory DSA 2722-1 (openjdk-7 - several vulnerabilities)
2013-07-15 00:00:00
Ubuntu: Security Advisory (USN-1907-2)
2013-08-01 00:00:00
centos
centos
java security update
2013-06-20 06:46:44
java security update
2013-07-04 10:07:44
java security update
2013-06-20 06:43:01
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2013-06-19 00:00:00
java-1.6.0-openjdk security update
2013-07-03 00:00:00
java-1.7.0-openjdk security update
2013-06-19 00:00:00
nessus
nessus
CentOS 6 : java-1.7.0-openjdk (CESA-2013:0957)
2013-06-21 00:00:00
CentOS 5 / 6 : java-1.6.0-openjdk (CESA-2013:1014)
2013-07-05 00:00:00
Debian DSA-2727-1 : openjdk-6 - several vulnerabilities
2013-07-28 00:00:00
redhat
redhat
(RHSA-2013:1014) Important: java-1.6.0-openjdk security update
2013-07-03 00:00:00
(RHSA-2013:0957) Critical: java-1.7.0-openjdk security update
2013-06-19 00:00:00
(RHSA-2013:0958) Important: java-1.7.0-openjdk security update
2013-06-19 00:00:00
debian
debian
[SECURITY] [DSA 2727-1] openjdk-6 security update
2013-07-25 21:11:57
[SECURITY] [DSA 2722-1] openjdk-7 security update
2013-07-15 15:52:23
amazon
amazon
Important: java-1.7.0-openjdk
2013-06-20 14:14:00
Important: java-1.6.0-openjdk
2013-07-12 15:31:00
suse
suse
Security update for java-1_6_0-openjdk (important)
2013-07-23 22:04:14
Security update for java-1_5_0-ibm (important)
2013-07-27 17:04:14
Security update for IBMJava5 JRE and IBMJava5 SDK (important)
2013-08-02 23:04:12
mageia
mageia
Updated java-1.7.0-openjdk packages fix multiple security vulnerabilities
2013-06-26 22:13:26
Updated java-1.6.0-openjdk packages fix security vulnerabilities
2013-07-16 11:26:07
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2013-07-16 00:00:00
IcedTea Web update
2013-07-16 00:00:00
OpenJDK 6 vulnerabilities
2013-07-23 00:00:00
veracode
veracode
Privilege Escalation
2019-05-02 04:46:31
Arbitrary Code Execution
2019-05-02 04:46:33
Privilege Escalation
2019-05-02 04:46:29
securityvulns
securityvulns
Oracle Java multiple security vulnerabilities
2013-08-28 00:00:00
ibm
ibm
Security Bulletin: Potential security vulnerabilities with JavaTM SDKs
2022-09-25 21:06:56
Security Bulletin: Multiple vulnerabilities in the IBM Java SDK
2022-09-25 21:06:56
ubuntucve
ubuntucve
attackerkb
attackerkb
CVE-2013-2464
2013-06-18 00:00:00
nvd
nvd
cvelist
cvelist
prion
prion
Design/Logic Flaw
2013-06-18 22:55:00
Design/Logic Flaw
2013-06-18 22:55:00
Design/Logic Flaw
2013-06-18 22:55:00
cve
cve
thn
thn
New Mac OS Malware exploited two known Java vulnerabilities
2013-09-24 04:15:00
New Mac OS Malware exploited two known Java vulnerabilities
2013-09-24 15:15:00
threatpost
threatpost
Many Flash, Java Users Running Older, Vulnerable Versions
2013-09-06 07:40:52
saint
saint
Oracle Java java.awt.image.ByteComponentRaster Overflow
2013-10-24 00:00:00
Oracle Java java.awt.image.ByteComponentRaster Overflow
2013-10-24 00:00:00
Oracle Java Serviceability Subcomponent ProviderSkeleton Class Vulnerability
2013-07-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Oracle Java java.awt.image.ByteComponentRaster Memory Corruption - Ver2 (CVE-2013-2473)
2014-04-16 00:00:00
Oracle Java SE XML Digital Signature Spoofing (CVE-2013-2461)
2013-10-27 00:00:00
Java Applet ProviderSkeleton Class Insecure Invoke Method (CVE-2013-2460)
2013-07-10 00:00:00
metasploit
metasploit
Java Applet ProviderSkeleton Insecure Invoke Method
2013-06-24 06:04:38