1
PublicDateAtUSN: 2013-02-01
2
Candidate: CVE-2013-0426
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0426
6
http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html
7
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-February/021708.html
8
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-February/021728.html
9
https://usn.ubuntu.com/usn/usn-1724-1
11
Unspecified vulnerability in the Java Runtime Environment (JRE) component
12
in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through
13
Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote
14
attackers to affect confidentiality, integrity, and availability via
15
unknown vectors related to Libraries, a different vulnerability than
16
CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from
17
the February 2013 CPU. Oracle has not commented on claims from another
18
vendor that this issue is related to incorrect "access control checks" in
19
the logging API that allow remote attackers to bypass Java sandbox
29
upstream_sun-java6: needs-triage
30
hardy_sun-java6: ignored (upstream version is not redistributable)
31
lucid_sun-java6: DNE (removed from archive)
32
oneiric_sun-java6: DNE
33
precise_sun-java6: DNE
34
quantal_sun-java6: DNE
38
upstream_sun-java5: ignored (end of life)
39
hardy_sun-java5: ignored (upstream sun-java5 is EoL)
41
oneiric_sun-java5: DNE
42
precise_sun-java5: DNE
43
quantal_sun-java5: DNE
47
upstream_openjdk-6: pending (6b24-1.11.6, 6b27-1.12.1)
48
hardy_openjdk-6: released (6b27-1.12.3-0ubuntu1~08.04.1)
49
lucid_openjdk-6: released (6b27-1.12.1-2ubuntu0.10.04.2)
50
oneiric_openjdk-6: released (6b27-1.12.1-2ubuntu0.11.10.2)
51
precise_openjdk-6: released (6b27-1.12.1-2ubuntu0.12.04.2)
52
quantal_openjdk-6: released (6b27-1.12.1-2ubuntu0.12.10.2)
53
devel_openjdk-6: released (6b27-1.12.1-2ubuntu2)
56
upstream_openjdk-6b18: needs-triage
57
hardy_openjdk-6b18: DNE
58
lucid_openjdk-6b18: ignored (reached end-of-life)
59
oneiric_openjdk-6b18: ignored (superseded by openjdk-6)
60
precise_openjdk-6b18: DNE
61
quantal_openjdk-6b18: DNE
62
devel_openjdk-6b18: DNE
64
upstream_openjdk-7: pending (7u9-2.3.5)
67
oneiric_openjdk-7: released (7u13-2.3.6-0ubuntu0.11.10.2)
68
precise_openjdk-7: released (7u13-2.3.6-0ubuntu0.12.04.1)
69
quantal_openjdk-7: released (7u13-2.3.6-0ubuntu0.12.10.1)
70
devel_openjdk-7: released (7u13-2.3.6-1ubuntu1)