CVE-2013-2412

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to...

Improper access control

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

CVE-2013-2464

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different...

CVE-2013-2447

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous...

CVE-2013-2452

CVE-2013-2452 is referenced in IBM WebSphere Real Time advisories as an unspecified vulnerability in the JRE Libraries component that could allow a remote attacker to obtain sensitive information. Affected products/versions: IBM WebSphere Real Time v2 and v3 SR4-FP2 and earlier. Remediation: upgr...

CVE-2013-2455

CVE-2013-2455 is an Oracle Java/JRE vulnerability (June 2013 CPU era) described as an unspecified issue in the JRE Libraries component that could allow a remote attacker to obtain sensitive information. Public IBM advisories (and the NVD entry) indicate the issue affects Oracle Java SE 7 up to up...

CVE-2013-2457

MiracleLinux AXSA:2013-553:03 advisory lists CVE-2013-2457 as an in-JRE vulnerability in the JMX area affecting OpenJDK 7 and Oracle Java SE 7-era JREs. The description indicates an unspecified vulnerability in the Java Runtime Environment component that allows remote attackers to affect integrit...

CVE-2013-2459

The provided connected documents confirm concrete details for CVE-2013-2459 and related Java JRE/OpenJDK vulnerabilities in IBM/MiracleLinux advisories (June 2013 CPU era). MiracleLinux AXSA entries list numerous CVEs (e.g., CVE-2013-1500, CVE-2013-1571, CVE-2013-2444 to CVE-2013-2473, including ...

CVE-2013-2464

CVE-2013-2464 is described as an unspecified vulnerability in the Oracle Java SE JRE with potential impact to confidentiality, integrity, and availability via unknown vectors related to 2D. Connected documents provide concrete details for related CVEs (2463, 2465, 2470, 2471, 2472, 2473) indicati...

CVE-2013-2463

CVE-2013-2463 affects the 2D component (ImagingLib) of Oracle/OpenJDK Java runtimes. Connected advisories describe memory corruption risks in ImagingLib.lookupByteBI and related 2D processing, potentially exploitable by untrusted Java applications/APIs. Affected packages include OpenJDK/OpenJDK-d...

CVE-2013-2465

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

Oracle Java SE Critical Patch Update Announcement - June 2013

Oracle has released a June 2013 Critical Patch Update for Oracle Java SE. This Critical Patch Update is a collection of patches for multiple security vulnerabilities in Oracle Java SE. The update contains 40 new security vulnerability fixes, including a patch for Oracle JavaDoc frame injection...

KLA10000 Unspecified vulnerability in Oracle Java Runtime Environment

An unspecified vulnerability was found in the JRE component of Oracle Java SE in versions up to 7.21. By exploiting this vulnerability malicious users can affect integrity. This vulnerability can be exploited remotely at a point related to Deployment. Original advisories confirmation mitre Relate...

Java Runtime Environment DriverManager doPrivileged block sandbox bypass

Added: 05/24/2013 CVE: CVE-2013-1488 BID: 58504 OSVDB: 91472 Background Oracle Java is a development platform for developing and deploying Java applications. It includes the Java Development Kit JDK and the Java Runtime Environment JRE. The JRE provides the minimum requirements for executing a Ja...

ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors relate...

JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...