CVE-2014-0403

Publication date 15 January 2014

Last updated 24 July 2024

Ubuntu priority

Medium

Why this priority?

Description

Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5898 and CVE-2014-0375.

Read the notes from the security team

Status

Package Ubuntu Release Status
openjdk-6 13.10 saucy
Not affected
13.04 raring
Not affected
12.10 quantal
Not affected
12.04 LTS precise
Not affected
10.04 LTS lucid
Not affected
openjdk-7 13.10 saucy
Not affected
13.04 raring
Not affected
12.10 quantal
Not affected
12.04 LTS precise
Not affected
10.04 LTS lucid Not in release

Notes

mdeslaur

in lucid+, NetX and the plugin moved to the icedtea-web package

jdstrand

sun-java6 is not redistributable, no longer in the archive and no longer tracked sun-java5 is EOL upstream and no longer tracked Based on Oracle advisory and lack of fixes from OpenJDK, marking as 'not-affected' for now (which is the best we can do until more information comes to light)

References

Other references