CVE-2013-1480 (retired)

Priority
Description
Unspecified vulnerability in the Java Runtime Environment (JRE) component
in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through
Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote
attackers to affect confidentiality, integrity, and availability via
vectors related to AWT. NOTE: the previous information is from the
February 2013 CPU. Oracle has not commented on claims from another vendor
that this issue is related to "insufficient validation of raster
parameters" in awt_parseImage.c, which triggers memory corruption.
Assigned-to
doko
Package
Upstream:pending (6b24-1.11.6, 6b27-1.12.1)
Package
Upstream:needs-triage
Package
Upstream:pending (7u9-2.3.5)
Package
Upstream:ignored (end of life)
Package
Upstream:needs-triage
More Information

Updated: 2019-08-23 08:53:20 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)