Rapid7 Vulnerability & Exploit Database

USN-2386-1: OpenJDK 6 vulnerabilities

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

USN-2386-1: OpenJDK 6 vulnerabilities

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

10/15/2014

Created

07/25/2018

Added

10/17/2014

Modified

07/09/2020

Description

Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.

Solution(s)

ubuntu-upgrade-icedtea-6-jre-cacao
ubuntu-upgrade-icedtea-6-jre-jamvm
ubuntu-upgrade-openjdk-6-jre
ubuntu-upgrade-openjdk-6-jre-headless
ubuntu-upgrade-openjdk-6-jre-lib
ubuntu-upgrade-openjdk-6-jre-zero

References

https://attackerkb.com/topics/cve-2014-6457
70533
70538
70544
70548
70552
70556
70564
70567
70570
70572
CVE - 2014-6457
CVE - 2014-6502
CVE - 2014-6504
CVE - 2014-6506
CVE - 2014-6511
CVE - 2014-6512
CVE - 2014-6517
CVE - 2014-6519
CVE - 2014-6531
CVE - 2014-6558
DSA-3077
DSA-3080
RHSA-2014:1620
RHSA-2014:1633
RHSA-2014:1634
RHSA-2014:1636
RHSA-2014:1657
RHSA-2014:1658
RHSA-2014:1876
RHSA-2014:1877
RHSA-2014:1880
RHSA-2014:1881
RHSA-2014:1882
RHSA-2015:0264
USN-2386-1

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;