CVE-2014-6591
Published: 21 January 2015
Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
icu Launchpad, Ubuntu, Debian |
lucid |
Ignored
(reached end-of-life)
|
| precise |
Released
(4.8.1.1-3ubuntu0.3)
|
|
| trusty |
Released
(52.1-3ubuntu0.2)
|
|
| upstream |
Released
(52.1-7)
|
|
| utopic |
Released
(52.1-6ubuntu0.2)
|
|
|
Patches: upstream: http://bugs.icu-project.org/trac/changeset/37086 |
||
|
openjdk-6 Launchpad, Ubuntu, Debian |
lucid |
Released
(6b34-1.13.6-1ubuntu0.10.04.1)
|
| precise |
Released
(6b34-1.13.6-1ubuntu0.12.04.1)
|
|
| trusty |
Does not exist
(trusty was released [6b34-1.13.6-1ubuntu0.14.04.1])
|
|
| upstream |
Released
(6u85)
|
|
| utopic |
Released
(6b34-1.13.6-1ubuntu0.14.10.1)
|
|
|
openjdk-7 Launchpad, Ubuntu, Debian |
lucid |
Does not exist
|
| precise |
Released
(7u75-2.5.4-1~precise1)
|
|
| trusty |
Does not exist
(trusty was released [7u75-2.5.4-1~trusty1])
|
|
| upstream |
Released
(7u73)
|
|
| utopic |
Released
(7u75-2.5.4-1~utopic1)
|
|
|
Patches: upstream: http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/be61bf86aee9 |
||
|
openjdk-8 Launchpad, Ubuntu, Debian |
lucid |
Does not exist
|
| precise |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(8u26)
|
|
| utopic |
Not vulnerable
|
|
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591
- http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
- https://ubuntu.com/security/notices/USN-2486-1
- https://ubuntu.com/security/notices/USN-2487-1
- https://ubuntu.com/security/notices/USN-2522-1
- NVD
- Launchpad
- Debian