CVE-2013-1518
Publication date 17 April 2013
Last updated 24 July 2024
Ubuntu priority
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to “missing security restrictions.”
Status
Package | Ubuntu Release | Status |
---|---|---|
icedtea-web | 13.04 raring |
Not affected
|
12.10 quantal |
Not affected
|
|
12.04 LTS precise |
Not affected
|
|
11.10 oneiric |
Not affected
|
|
10.04 LTS lucid |
Not affected
|
|
8.04 LTS hardy | Not in release | |
openjdk-6 | 13.04 raring |
Fixed 6b27-1.12.5-1ubuntu1
|
12.10 quantal |
Fixed 6b27-1.12.5-0ubuntu0.12.10.1
|
|
12.04 LTS precise |
Fixed 6b27-1.12.5-0ubuntu0.12.04.1
|
|
11.10 oneiric |
Fixed 6b27-1.12.5-0ubuntu0.11.10.1
|
|
10.04 LTS lucid |
Fixed 6b27-1.12.5-0ubuntu0.10.04.1
|
|
8.04 LTS hardy | Ignored end of life | |
openjdk-6b18 | 13.04 raring | Not in release |
12.10 quantal | Not in release | |
12.04 LTS precise | Not in release | |
11.10 oneiric | Ignored end of life | |
10.04 LTS lucid | Ignored end of life | |
8.04 LTS hardy | Not in release | |
openjdk-7 | 13.04 raring |
Fixed 7u21-2.3.9-1ubuntu1
|
12.10 quantal |
Fixed 7u21-2.3.9-0ubuntu0.12.10.1
|
|
12.04 LTS precise |
Fixed 7u21-2.3.9-0ubuntu0.12.04.1
|
|
11.10 oneiric |
Fixed 7u21-2.3.9-0ubuntu0.11.10.1
|
|
10.04 LTS lucid | Not in release | |
8.04 LTS hardy | Not in release |
Notes
References
Related Ubuntu Security Notices (USN)
- USN-1819-1
- OpenJDK 6 vulnerabilities
- 7 May 2013
- USN-1806-1
- OpenJDK 7 vulnerabilities
- 23 April 2013