5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
openjdk is vulnerable to sandbox restrictions bypass. An improper permission check issue was discovered in the Libraries component in OpenJDK. An untrusted Java application or applet could use this flaw to bypass certain Java sandbox restrictions.
blog.fuseyism.com/index.php/2013/02/20/security-icedtea-2-1-6-2-2-6-2-3-7-for-openjdk-7-released/
icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.7/NEWS
marc.info/?l=bugtraq&m=136439120408139&w=2
marc.info/?l=bugtraq&m=136733161405818&w=2
security.gentoo.org/glsa/glsa-201406-32.xml
www.mandriva.com/security/advisories?name=MDVSA-2013:095
www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html
www.ubuntu.com/usn/USN-1735-1
www.us-cert.gov/cas/techalerts/TA13-051A.html
access.redhat.com/security/updates/classification/#important
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19388
rhn.redhat.com/errata/RHSA-2013-0275.html
wiki.mageia.org/en/Support/Advisories/MGASA-2013-0084