CVE-2014-0462 — Oracle Openjdk vulnerability

10 documents7 sources

Severity

10.0CRITICALNVD

EPSS

0.6%

top 30.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Openjdk

Timeline

PublishedMay 14

Latest updateMay 17

Description

Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12.04 LTS and 10.04 LTS has unknown impact and attack vectors, a different vulnerability than CVE-2014-2405.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDoracle/openjdk1.6.0

🔴Vulnerability Details

GHSA

GHSA-8888-mf86-7q3h: Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12↗2022-05-17

▶

CVEList

CVE-2014-0462: Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12↗2014-05-14

▶

OSV

CVE-2014-0462: Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12↗2014-04-24

▶

📋Vendor Advisories

Ubuntu

OpenJDK 6 vulnerabilities↗2014-05-01

▶

Red Hat

OpenJDK: libjpeg: uninitialized memory read information leak (AWT, 8029760)↗2014-04-15

▶

Red Hat

OpenJDK: libpng unhandled zero-length PLTE chunk or NULL palette (AWT, 8031352)↗2014-04-15

▶

💬Community

Bugzilla

CVE-2014-2405 OpenJDK: libpng unhandled zero-length PLTE chunk or NULL palette (AWT, 8031352)↗2014-06-09

▶

Bugzilla

CVE-2014-0462 OpenJDK: libjpeg: uninitialized memory read information leak (AWT, 8029760)↗2014-06-09

▶

Bugzilla

CVE-2014-0149 JBoss Seam: XSS flaw in remoting↗2014-03-20

▶