1
PublicDateAtUSN: 2013-10-16
2
Candidate: CVE-2013-5802
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5802
6
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
7
https://usn.ubuntu.com/usn/usn-2033-1
8
https://usn.ubuntu.com/usn/usn-2089-1
10
Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60
11
and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier,
12
JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows
13
remote attackers to affect confidentiality, integrity, and availability via
14
vectors related to JAXP.
17
jdstrand> no 2.3 update as of 2013/12/20. 2.4/armhf needs to be fixed
24
upstream_openjdk-7: needed
26
precise_openjdk-7: released (7u51-2.4.4-0ubuntu0.12.04.2)
27
quantal_openjdk-7: released (7u51-2.4.4-0ubuntu0.12.10.2)
28
raring_openjdk-7: released (7u51-2.4.4-0ubuntu0.13.04.2)
29
saucy_openjdk-7: released (7u51-2.4.4-0ubuntu0.13.10.1)
30
devel_openjdk-7: not-affected
33
upstream_openjdk-6: needed
34
lucid_openjdk-6: released (6b27-1.12.6-1ubuntu0.10.04.3)
35
precise_openjdk-6: released (6b27-1.12.6-1ubuntu0.12.04.3)
36
quantal_openjdk-6: released (6b27-1.12.6-1ubuntu0.12.10.4)
37
raring_openjdk-6: released (6b27-1.12.6-1ubuntu0.13.04.4)
38
saucy_openjdk-6: released (6b27-1.12.6-1ubuntu2.1)
39
devel_openjdk-6: released (6b27-1.12.6-1ubuntu2.1)