CVE-2013-5851

Publication date 16 October 2013

Last updated 24 July 2024

Ubuntu priority

Medium

Why this priority?

Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JAXP.

Read the notes from the security team

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
openjdk-6 13.10 saucy
Not affected
13.04 raring
Not affected
12.10 quantal
Not affected
12.04 LTS precise
Not affected
10.04 LTS lucid
Not affected
openjdk-7 13.10 saucy
Fixed 7u51-2.4.4-0ubuntu0.13.10.1
13.04 raring
Fixed 7u51-2.4.4-0ubuntu0.13.04.2
12.10 quantal
Fixed 7u51-2.4.4-0ubuntu0.12.10.2
12.04 LTS precise
Fixed 7u51-2.4.4-0ubuntu0.12.04.2
10.04 LTS lucid Not in release

Notes

jdstrand

no 2.3 update as of 2013/12/20. 2.4/armhf needs to be fixed

References

Related Ubuntu Security Notices (USN)

    • USN-2089-1
    • OpenJDK 7 vulnerabilities
    • 23 January 2014
    • USN-2033-1
    • OpenJDK 6 vulnerabilities
    • 21 November 2013

Other references