CVE-2013-2430
Publication date 17 April 2013
Last updated 24 July 2024
Ubuntu priority
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to “JPEGImageReader state corruption” when using native code.
Status
Package | Ubuntu Release | Status |
---|---|---|
icedtea-web | 13.04 raring |
Not affected
|
12.10 quantal |
Not affected
|
|
12.04 LTS precise |
Not affected
|
|
11.10 oneiric |
Not affected
|
|
10.04 LTS lucid |
Not affected
|
|
8.04 LTS hardy | Not in release | |
openjdk-6 | 13.04 raring |
Fixed 6b27-1.12.5-1ubuntu1
|
12.10 quantal |
Fixed 6b27-1.12.5-0ubuntu0.12.10.1
|
|
12.04 LTS precise |
Fixed 6b27-1.12.5-0ubuntu0.12.04.1
|
|
11.10 oneiric |
Fixed 6b27-1.12.5-0ubuntu0.11.10.1
|
|
10.04 LTS lucid |
Fixed 6b27-1.12.5-0ubuntu0.10.04.1
|
|
8.04 LTS hardy | Ignored end of life | |
openjdk-6b18 | 13.04 raring | Not in release |
12.10 quantal | Not in release | |
12.04 LTS precise | Not in release | |
11.10 oneiric | Ignored end of life | |
10.04 LTS lucid | Ignored end of life | |
8.04 LTS hardy | Not in release | |
openjdk-7 | 13.04 raring |
Fixed 7u21-2.3.9-1ubuntu1
|
12.10 quantal |
Fixed 7u21-2.3.9-0ubuntu0.12.10.1
|
|
12.04 LTS precise |
Fixed 7u21-2.3.9-0ubuntu0.12.04.1
|
|
11.10 oneiric |
Fixed 7u21-2.3.9-0ubuntu0.11.10.1
|
|
10.04 LTS lucid | Not in release | |
8.04 LTS hardy | Not in release |
Notes
References
Related Ubuntu Security Notices (USN)
- USN-1819-1
- OpenJDK 6 vulnerabilities
- 7 May 2013
- USN-1806-1
- OpenJDK 7 vulnerabilities
- 23 April 2013