5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.009 Low
EPSS
Percentile
82.6%
Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and
earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote
attackers to affect confidentiality via unknown vectors related to 2D.
Author | Note |
---|---|
jdstrand | no 2.3 update as of 2013/12/20. 2.4/armhf needs to be fixed |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu0.10.04.3 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu0.12.04.3 | UNKNOWN |
ubuntu | 12.10 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu0.12.10.4 | UNKNOWN |
ubuntu | 13.04 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu0.13.04.4 | UNKNOWN |
ubuntu | 13.10 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu2.1 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-7 | < 7u51-2.4.4-0ubuntu0.12.04.2 | UNKNOWN |
ubuntu | 12.10 | noarch | openjdk-7 | < 7u51-2.4.4-0ubuntu0.12.10.2 | UNKNOWN |
ubuntu | 13.04 | noarch | openjdk-7 | < 7u51-2.4.4-0ubuntu0.13.04.2 | UNKNOWN |
ubuntu | 13.10 | noarch | openjdk-7 | < 7u51-2.4.4-0ubuntu0.13.10.1 | UNKNOWN |
www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
launchpad.net/bugs/cve/CVE-2013-5778
nvd.nist.gov/vuln/detail/CVE-2013-5778
security-tracker.debian.org/tracker/CVE-2013-5778
ubuntu.com/security/notices/USN-2033-1
ubuntu.com/security/notices/USN-2089-1
www.cve.org/CVERecord?id=CVE-2013-5778