Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 490700 (CVE-2013-4041) - dev-java/ibm-jdk-bin : multiple vulnerabilities (CVE-2013-{4041,5375,5456,5457,5458})
Summary: dev-java/ibm-jdk-bin : multiple vulnerabilities (CVE-2013-{4041,5375,5456,545...
Status: RESOLVED FIXED
Alias: CVE-2013-4041
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://www.ibm.com/developerworks/ja...
Whiteboard: B2 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2013-11-07 16:48 UTC by Agostino Sarubbo
Modified: 2016-06-21 10:33 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2013-11-07 16:48:17 UTC 
See $URL
Comment 1 GLSAMaker/CVETool Bot gentoo-dev 2013-11-27 21:31:38 UTC 
CVE-2013-5458 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5458):
  Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6 allows remote
  attackers to execute arbitrary code via unspecified vectors.

CVE-2013-5457 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5457):
  Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6, 6.0.1 before
  SR7, and 6.0.0 before SR15 allows remote attackers to execute arbitrary code
  via unspecified vectors.

CVE-2013-5456 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5456):
  Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6 allows remote
  attackers to execute arbitrary code via unspecified vectors.

CVE-2013-5375 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5375):
  Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6, 6.0.1 before
  SR7, 6.0.0 before SR15, and 5.0.0 before SR16 FP4 allows remote attackers to
  access restricted classes via unspecified vectors related to XML and XSL.

CVE-2013-4041 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4041):
  Unspecified vulnerability in IBM Java SDK 5.0.0 before SR16 FP4, 7.0.0
  before SR6, 6.0.1 before SR7, and 6.0.0 before SR15 allows remote attackers
  to access restricted classes via unspecified vectors.
Comment 2 James Le Cuirot gentoo-dev 2016-04-14 20:31:34 UTC 
It's been last-rited. Security team, please close this out. Java team is done here.
Comment 3 Aaron Bauman (RETIRED) gentoo-dev 2016-06-21 10:33:43 UTC 
Package was last-rited and removed.