1
PublicDateAtUSN: 2013-06-18
2
Candidate: CVE-2013-2451
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2451
6
http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html
7
http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html
8
http://blog.fuseyism.com/index.php/2013/06/19/imminent-icedtea-web-breakage/
9
https://usn.ubuntu.com/usn/usn-1907-1
10
https://usn.ubuntu.com/usn/usn-1908-1
12
Unspecified vulnerability in the Java Runtime Environment (JRE) component
13
in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and
14
OpenJDK 7, allows local users to affect confidentiality, integrity, and
15
availability via unknown vectors related to Networking. NOTE: the previous
16
information is from the June 2013 CPU. Oracle has not commented on claims
17
from another vendor that this issue is related to improper enforcement of
18
exclusive port binds when running on Windows, which allows attackers to
19
bind to ports that are already in use.
22
mdeslaur> in lucid+, NetX and the plugin moved to the icedtea-web package
23
jdstrand> sun-java6 is not redistributable, no longer in the archive and
25
jdstrand> sun-java5 is EOL upstream and no longer tracked
26
jdstrand> as of 2013-06-19, upstream IcedTea updates are not available
27
jdstrand> updates break the icedtea-web plugin and it will need this fix:
28
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-June/023745.html
35
upstream_openjdk-6: pending (6b27-1.12.6)
36
lucid_openjdk-6: released (6b27-1.12.6-1ubuntu0.10.04.1)
37
precise_openjdk-6: released (6b27-1.12.6-1ubuntu0.12.04.1)
38
quantal_openjdk-6: released (6b27-1.12.6-1ubuntu0.12.10.2)
39
raring_openjdk-6: released (6b27-1.12.6-1ubuntu0.13.04.2)
40
devel_openjdk-6: not-affected (6b27-1.12.6-1ubuntu1)
43
upstream_openjdk-7: pending (2.3.10)
45
precise_openjdk-7: released (7u25-2.3.10-1ubuntu0.12.04.2)
46
quantal_openjdk-7: released (7u25-2.3.10-1ubuntu0.12.10.2)
47
raring_openjdk-7: released (7u25-2.3.10-1ubuntu0.13.04.2)
48
devel_openjdk-7: not-affected (7u25-2.3.10-2ubuntu1)
51
upstream_openjdk-6b18: needs-triage
52
lucid_openjdk-6b18: ignored (reached end-of-life)
53
precise_openjdk-6b18: DNE
54
quantal_openjdk-6b18: DNE
55
raring_openjdk-6b18: DNE
56
devel_openjdk-6b18: DNE