CVE-2012-3216
Published: 16 October 2012
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.
Notes
| Author | Note |
|---|---|
| mdeslaur | in lucid+, NetX and the plugin moved to the icedtea-web package |
| jdstrand | openjdk-6b18 FTBFS on 11.04 (LP: #1043003) |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
icedtea-web Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
| lucid |
Not vulnerable
|
|
| natty |
Not vulnerable
|
|
| oneiric |
Not vulnerable
|
|
| precise |
Not vulnerable
|
|
| quantal |
Not vulnerable
|
|
| upstream |
Needs triage
|
|
|
openjdk-6 Launchpad, Ubuntu, Debian |
hardy |
Released
(6b27-1.12.3-0ubuntu1~08.04.1)
|
| lucid |
Released
(6b24-1.11.5-0ubuntu1~10.04.2)
|
|
| natty |
Released
(6b24-1.11.5-0ubuntu1~11.04.1)
|
|
| oneiric |
Released
(6b24-1.11.5-0ubuntu1~11.10.1)
|
|
| precise |
Released
(6b24-1.11.5-0ubuntu1~12.04.1)
|
|
| quantal |
Released
(6b24-1.11.5-0ubuntu1~12.10.1)
|
|
| upstream |
Released
(1.10.10, 1.11.5)
|
|
|
openjdk-6b18 Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
| lucid |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| upstream |
Released
(1.10.10, 1.11.5)
|
|
|
openjdk-7 Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
| lucid |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Released
(7u9-2.3.3-0ubuntu1~11.10.1)
|
|
| precise |
Released
(7u9-2.3.3-0ubuntu1~12.04.1)
|
|
| quantal |
Released
(7u9-2.3.3-0ubuntu1~12.10.1)
|
|
| upstream |
Released
(2.1.3, 2.2.3, 2.3.3)
|
|
|
sun-java5 Launchpad, Ubuntu, Debian |
hardy |
Ignored
(end of life)
|
| lucid |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| upstream |
Ignored
(end of life)
|
|
|
sun-java6 Launchpad, Ubuntu, Debian |
hardy |
Ignored
(end of life)
|
| lucid |
Does not exist
(removed from archive)
|
|
| natty |
Does not exist
(removed from archive)
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| upstream |
Released
(6 update 36)
|
References
- http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html
- http://www.oracle.com/technetwork/topics/security/javacpuoct2012verbose-1515981.html
- http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-October/020556.html
- http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-October/020571.html
- https://ubuntu.com/security/notices/USN-1619-1
- https://www.cve.org/CVERecord?id=CVE-2012-3216
- NVD
- Launchpad
- Debian