CVE-2014-2405

Опубликовано: 15 апр. 2014

Источник: redhat

CVSS2: 4.3

Описание

Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12.04 LTS and 10.04 LTS has unknown impact and attack vectors, a different vulnerability than CVE-2014-0462.

Отчет

This issue is a duplicate of the libpng CVE-2013-6954 issue. The versions of java-1.6.0-openjdk and java-1.7.0-openjdk as shipped with Red Hat Enterprise Linux 5 and 6 were not affected by this issue, as they do not use bundled libpng version.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	java-1.6.0-openjdk	Not affected
Red Hat Enterprise Linux 5	java-1.7.0-openjdk	Not affected
Red Hat Enterprise Linux 6	java-1.6.0-openjdk	Not affected
Red Hat Enterprise Linux 6	java-1.7.0-openjdk	Not affected
Red Hat Enterprise Linux 7	java-1.6.0-openjdk	Not affected
Red Hat Enterprise Linux 7	java-1.7.0-openjdk	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=1106391OpenJDK: libpng unhandled zero-length PLTE chunk or NULL palette (AWT, 8031352)

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2014-2405

ubuntu

больше 11 лет назад

Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12.04 LTS and 10.04 LTS has unknown impact and attack vectors, a different vulnerability than CVE-2014-0462.

CVE-2014-2405

nvd

больше 11 лет назад

Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12.04 LTS and 10.04 LTS has unknown impact and attack vectors, a different vulnerability than CVE-2014-0462.

CVE-2014-2405

debian

больше 11 лет назад

Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux ...

GHSA-vjx6-8q4g-9hpf

github

больше 3 лет назад

Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12.04 LTS and 10.04 LTS has unknown impact and attack vectors, a different vulnerability than CVE-2014-0462.

4.3 Medium

CVSS2