9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
Several vulnerabilities have been discovered in OpenJDK, an implementation
of the Oracle Java platform, resulting in the execution of arbitrary code,
breakouts of the Java sandbox, information disclosure or denial of service.
For Debian 6 Squeeze, these problems have been fixed in version
6b33-1.13.5-2~deb6u1.
We recommend that you upgrade your openjdk-6 packages and that you
subscribe to <https://lists.debian.org/debian-lts/> to help test updated
packages before we release them.