Novell Home

CVE-2013-1488

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-1488 at MITRE

Description

The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to execute arbitrary code via unspecified vectors involving reflection, Libraries, "improper toString calls," and the JDBC driver manager, as demonstrated by James Forshaw during a Pwn2Own competition at CanSecWest 2013.

NVD CVSS v2 Base Score: 10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C)

Novell/SUSE information

Novell Bugzilla entries: 816720, 817157, 819288

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Software Development Kit 11 SP3
  • java-1_7_0-ibm-devel >= 1.7.0_sr4.2-0.6.1
Builds
SAT Patch Nr: 7921
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • java-1_7_0-ibm >= 1.7.0_sr4.2-0.6.1
  • java-1_7_0-ibm-alsa >= 1.7.0_sr4.2-0.6.1
  • java-1_7_0-ibm-jdbc >= 1.7.0_sr4.2-0.6.1
  • java-1_7_0-ibm-plugin >= 1.7.0_sr4.2-0.6.1
Builds
SAT Patch Nr: 7921
SUSE Linux Enterprise Server 11 SP3
  • java-1_7_0-ibm >= 1.7.0_sr4.2-0.6.1
  • java-1_7_0-ibm-jdbc >= 1.7.0_sr4.2-0.6.1
Builds
SAT Patch Nr: 7921
SUSE Linux Enterprise Software Development Kit 11 SP2
  • java-1_7_0-ibm-devel >= 1.7.0_sr4.2-0.6.1
Builds
SAT Patch Nr: 7794
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • java-1_7_0-ibm >= 1.7.0_sr4.2-0.6.1
  • java-1_7_0-ibm-alsa >= 1.7.0_sr4.2-0.6.1
  • java-1_7_0-ibm-jdbc >= 1.7.0_sr4.2-0.6.1
  • java-1_7_0-ibm-plugin >= 1.7.0_sr4.2-0.6.1
Builds
SAT Patch Nr: 7794
SUSE Linux Enterprise Server 11 SP2
  • java-1_7_0-ibm >= 1.7.0_sr4.2-0.6.1
  • java-1_7_0-ibm-jdbc >= 1.7.0_sr4.2-0.6.1
Builds
SAT Patch Nr: 7794
SLE 11 SP2 DEBUGINFO
  • java-1_6_0-openjdk-debuginfo >= 1.6.0.0_b27.1.12.5-0.2.1
  • java-1_6_0-openjdk-debugsource >= 1.6.0.0_b27.1.12.5-0.2.1
Builds
SAT Patch Nr: 7718
SUSE Linux Enterprise Desktop 11 SP2
  • java-1_6_0-openjdk >= 1.6.0.0_b27.1.12.5-0.2.1
  • java-1_6_0-openjdk-demo >= 1.6.0.0_b27.1.12.5-0.2.1
  • java-1_6_0-openjdk-devel >= 1.6.0.0_b27.1.12.5-0.2.1
Builds
SAT Patch Nr: 7718

© 2014 Novell