CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
83.2%
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE
Embedded 7u51, allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors related to Libraries.
Author | Note |
---|---|
mdeslaur | in lucid+, NetX and the plugin moved to the icedtea-web package |
jdstrand | sun-java6 is not redistributable, no longer in the archive and no longer tracked sun-java5 is EOL upstream and no longer tracked |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | openjdk-6 | < 6b31-1.13.3-1ubuntu1~0.10.04.1 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-6 | < 6b31-1.13.3-1ubuntu1~0.12.04.2 | UNKNOWN |
ubuntu | 12.10 | noarch | openjdk-6 | < 6b31-1.13.3-1ubuntu1~0.12.10.1 | UNKNOWN |
ubuntu | 13.10 | noarch | openjdk-6 | < 6b31-1.13.3-1ubuntu1~0.13.10.1 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-7 | < 7u55-2.4.7-1ubuntu1~0.12.04.2 | UNKNOWN |
ubuntu | 12.10 | noarch | openjdk-7 | < 7u55-2.4.7-1ubuntu1~0.12.10.1 | UNKNOWN |
ubuntu | 13.10 | noarch | openjdk-7 | < 7u55-2.4.7-1ubuntu1~0.13.10.1 | UNKNOWN |
ubuntu | 14.04 | noarch | openjdk-7 | < 7u55-2.4.7-1ubuntu1 | UNKNOWN |
www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
launchpad.net/bugs/cve/CVE-2014-0461
nvd.nist.gov/vuln/detail/CVE-2014-0461
security-tracker.debian.org/tracker/CVE-2014-0461
ubuntu.com/security/notices/USN-2187-1
ubuntu.com/security/notices/USN-2191-1
www.cve.org/CVERecord?id=CVE-2014-0461