6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.009 Low
EPSS
Percentile
83.0%
Unspecified vulnerability in the Java SE, Java SE Embedded component in
Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE
5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote
attackers to affect confidentiality and integrity via unknown vectors
related to Libraries.
Author | Note |
---|---|
jdstrand | no 2.3 update as of 2013/12/20. 2.4/armhf needs to be fixed |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu0.10.04.3 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu0.12.04.3 | UNKNOWN |
ubuntu | 12.10 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu0.12.10.4 | UNKNOWN |
ubuntu | 13.04 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu0.13.04.4 | UNKNOWN |
ubuntu | 13.10 | noarch | openjdk-6 | < 6b27-1.12.6-1ubuntu2.1 | UNKNOWN |
ubuntu | 12.04 | noarch | openjdk-7 | < 7u51-2.4.4-0ubuntu0.12.04.2 | UNKNOWN |
ubuntu | 12.10 | noarch | openjdk-7 | < 7u51-2.4.4-0ubuntu0.12.10.2 | UNKNOWN |
ubuntu | 13.04 | noarch | openjdk-7 | < 7u51-2.4.4-0ubuntu0.13.04.2 | UNKNOWN |
ubuntu | 13.10 | noarch | openjdk-7 | < 7u51-2.4.4-0ubuntu0.13.10.1 | UNKNOWN |
www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
launchpad.net/bugs/cve/CVE-2013-3829
nvd.nist.gov/vuln/detail/CVE-2013-3829
security-tracker.debian.org/tracker/CVE-2013-3829
ubuntu.com/security/notices/USN-2033-1
ubuntu.com/security/notices/USN-2089-1
www.cve.org/CVERecord?id=CVE-2013-3829