OpenJDK: Incorrect NIO channel separation (Libraries, 8026716)

🗓️ 17 Apr 2014 09:28:25Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 4 Views

Unspecified OpenJDK NIO channel separation flaw in Java Standard Edition 7u51/8 and Embedded 7u51 may allow remote disclosure.

Reporter	Title	Published	Views	Family All 134
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition	15 Jun 201807:00	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in current IBM SDK for Java for IBM Support Assistant April 2014 CPU	15 Jun 201807:03	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in current IBM SDK for Java for WebSphere Application Server April 2014 CPU	15 Jun 201807:00	–	ibm
IBM Security Bulletins	Security Bulletin: Potential security vulnerabilities with JavaTM SDKs	22 Sep 202203:02	–	ibm
IBM Security Bulletins	Security Bulletin: InfoSphere Streams is possibly affected by vulnerabilities in the IBM® SDK, Java™ Technology Edition (CVE-2014-0453 and CVE-2014-0460)	16 Jun 201813:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM WebSphere Real Time	15 Jun 201807:00	–	ibm
Tenable Nessus	AIX Java Advisory : java_apr2014_advisory.asc	28 Jul 201400:00	–	nessus
Tenable Nessus	Amazon Linux AMI : java-1.7.0-openjdk (ALAS-2014-327)	23 Apr 201400:00	–	nessus
Tenable Nessus	CentOS 6 : java-1.7.0-openjdk (CESA-2014:0406)	17 Apr 201400:00	–	nessus
Tenable Nessus	CentOS 5 : java-1.7.0-openjdk (CESA-2014:0407)	17 Apr 201400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	6	x86_64	java-1.7.0-oracle	1:1.7.0.55-1jpp.1.el6_5	java-1.7.0-oracle-1:1.7.0.55-1jpp.1.el6_5.x86_64.rpm
Red Hat Enterprise Linux	6	any	java-1.7.0-oracle	1:1.7.0.55-1jpp.1.el6_5.i686	java-1.7.0-oracle-1:1.7.0.55-1jpp.1.el6_5.i686.noarch.rpm
Red Hat Enterprise Linux	5	i386	java-1.7.0-oracle	1:1.7.0.55-1jpp.2.el5_10	java-1.7.0-oracle-1:1.7.0.55-1jpp.2.el5_10.i386.rpm
Red Hat Enterprise Linux	5	x86_64	java-1.7.0-oracle	1:1.7.0.55-1jpp.2.el5_10	java-1.7.0-oracle-1:1.7.0.55-1jpp.2.el5_10.x86_64.rpm
Red Hat Enterprise Linux	6	x86_64	java-1.7.0-oracle-devel	1:1.7.0.55-1jpp.1.el6_5	java-1.7.0-oracle-devel-1:1.7.0.55-1jpp.1.el6_5.x86_64.rpm
Red Hat Enterprise Linux	6	any	java-1.7.0-oracle-devel	1:1.7.0.55-1jpp.1.el6_5.i686	java-1.7.0-oracle-devel-1:1.7.0.55-1jpp.1.el6_5.i686.noarch.rpm
Red Hat Enterprise Linux	5	i386	java-1.7.0-oracle-devel	1:1.7.0.55-1jpp.2.el5_10	java-1.7.0-oracle-devel-1:1.7.0.55-1jpp.2.el5_10.i386.rpm
Red Hat Enterprise Linux	5	x86_64	java-1.7.0-oracle-devel	1:1.7.0.55-1jpp.2.el5_10	java-1.7.0-oracle-devel-1:1.7.0.55-1jpp.2.el5_10.x86_64.rpm
Red Hat Enterprise Linux	6	x86_64	java-1.7.0-oracle-javafx	1:1.7.0.55-1jpp.1.el6_5	java-1.7.0-oracle-javafx-1:1.7.0.55-1jpp.1.el6_5.x86_64.rpm
Red Hat Enterprise Linux	6	any	java-1.7.0-oracle-javafx	1:1.7.0.55-1jpp.1.el6_5.i686	java-1.7.0-oracle-javafx-1:1.7.0.55-1jpp.1.el6_5.i686.noarch.rpm

Source	Link
oracle	www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
access	www.access.redhat.com/security/cve/CVE-2014-2402
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2014-2402
cve	www.cve.org/CVERecord

28 Jun 2026 12:17Current

7.4High risk

Vulners AI Score7.4

CVSS 27.5

EPSS0.03968

OpenJDK Channel separation Remote disclosure Java Standard Edition Libraries