CVE-2014-0429

Upstream information

CVE-2014-0429 at MITRE

Description

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

SUSE information

CVSS v2 Scores
	National Vulnerability Database
Base Score	10.00
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C
Access Vector	Network
Access Complexity	Low
Authentication	None
Confidentiality Impact	Complete
Integrity Impact	Complete
Availability Impact	Complete

SUSE Bugzilla entries: 873872 [RESOLVED / FIXED], 873873 [RESOLVED / FIXED], 877429 [RESOLVED / FIXED], 877430 [CLOSED / FIXED]

SUSE Security Advisories:

SUSE-SU-2014:0639-1, published Wed, 14 May 2014 01:05:06 +0200 (CEST)
SUSE-SU-2014:0728-1, published Thu, 29 May 2014 01:04:18 +0200 (CEST)
SUSE-SU-2014:0728-2, published Fri, 30 May 2014 02:04:33 +0200 (CEST)
SUSE-SU-2014:0728-3, published Tue, 3 Jun 2014 01:04:17 +0200 (CEST)
SUSE-SU-2014:0732-1, published Thu May 29 17:04:17 MDT 2014
SUSE-SU-2014:0733-1, published Fri, 30 May 2014 02:04:16 +0200 (CEST)
SUSE-SU-2014:0733-2, published Mon, 2 Jun 2014 22:04:12 +0200 (CEST)
openSUSE-SU-2014:1638-1, published Mon, 15 Dec 2014 13:06:16 +0100 (CET)
openSUSE-SU-2014:1645-1, published Mon, 15 Dec 2014 13:08:33 +0100 (CET)

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Desktop 11 SP3	`java-1_7_0-openjdk >= 1.7.0.6-0.27.1` `java-1_7_0-openjdk-demo >= 1.7.0.6-0.27.1` `java-1_7_0-openjdk-devel >= 1.7.0.6-0.27.1`	Patchnames: sledsp3-java-1_7_0-openjdk
SUSE Linux Enterprise Server 11 SP1-LTSS	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Patchnames: slessp1-java-1_6_0-ibm
SUSE Linux Enterprise Server 11 SP2-LTSS	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1` `java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-alsa >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-devel >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-plugin >= 1.7.0_sr7.0-0.5.1`	Patchnames: slessp2-java-1_6_0-ibm slessp2-java-1_7_0-ibm
SUSE Linux Enterprise Server 11 SP3	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.2-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1` `java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-alsa >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-plugin >= 1.7.0_sr7.0-0.5.1`	Patchnames: slessp3-java-1_6_0-ibm slessp3-java-1_7_0-ibm
SUSE Linux Enterprise Server for VMWare 11 SP3	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.2-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1` `java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-alsa >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-plugin >= 1.7.0_sr7.0-0.5.1`	Patchnames: slessp3-java-1_6_0-ibm slessp3-java-1_7_0-ibm
SUSE Linux Enterprise Software Development Kit 11 SP3	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_7_0-ibm-devel >= 1.7.0_sr7.0-0.5.1`	Patchnames: sdksp3-java-1_6_0-ibm sdksp3-java-1_7_0-ibm
SUSE Manager 1.7	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Patchnames: sleman17sp2-java-1_6_0-ibm
SUSE Linux Enterprise Software Development Kit 11 SP3	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9256
SUSE Linux Enterprise Software Development Kit 11 SP3	`java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9256
SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3 for VMware	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9256
SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3 for VMware	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9256
SUSE Linux Enterprise Server 11 SP3	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9256
SUSE Linux Enterprise Software Development Kit 11 SP3	`java-1_7_0-ibm-devel >= 1.7.0_sr7.0-0.5.1`	Builds SAT Patch Nr: 9263
SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3 for VMware	`java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-alsa >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-plugin >= 1.7.0_sr7.0-0.5.1`	Builds SAT Patch Nr: 9263
SUSE Linux Enterprise Server 11 SP3	`java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1`	Builds SAT Patch Nr: 9263
SUSE Manager 1.7 for SLE 11 SP2	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9258
SUSE Linux Enterprise Server 10 SP3 LTSS for x86	`java-1_5_0-ibm >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-alsa >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-devel >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-fonts >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-jdbc >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-plugin >= 1.5.0_sr16.6-0.5.1`	Builds ZYPP Patch Nr: 8854
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit	`java-1_5_0-ibm >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-32bit >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-devel >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-devel-32bit >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-fonts >= 1.5.0_sr16.6-0.5.1`	Builds ZYPP Patch Nr: 8854
SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T	`java-1_5_0-ibm >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-32bit >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-alsa-32bit >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-devel >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-devel-32bit >= 1.5.0_sr16.6-0.5.1` `java-1_5_0-ibm-fonts >= 1.5.0_sr16.6-0.5.1`	Builds ZYPP Patch Nr: 8854
SUSE Linux Enterprise Server 10 SP4 LTSS for x86	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.8.1`	Builds ZYPP Patch Nr: 8849
SUSE Linux Enterprise Server 10 SP4 LTSS for IBM zSeries 64bit	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-32bit >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-devel-32bit >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.8.1`	Builds ZYPP Patch Nr: 8849
SUSE Linux Enterprise Server 10 SP4 LTSS for AMD64 and Intel EM64T	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-32bit >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-alsa-32bit >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-devel-32bit >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.8.1` `java-1_6_0-ibm-plugin-32bit >= 1.6.0_sr16.0-0.8.1`	Builds ZYPP Patch Nr: 8849
SUSE Linux Enterprise Desktop 11 SP3	`java-1_7_0-openjdk >= 1.7.0.6-0.27.1` `java-1_7_0-openjdk-demo >= 1.7.0.6-0.27.1` `java-1_7_0-openjdk-devel >= 1.7.0.6-0.27.1`	Builds SAT Patch Nr: 9209
SUSE Linux Enterprise Server 10 SP3 LTSS for x86	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.5.1`	Builds ZYPP Patch Nr: 8848
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-32bit >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-devel-32bit >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.5.1`	Builds ZYPP Patch Nr: 8848
SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-32bit >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-alsa-32bit >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-devel-32bit >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.5.1` `java-1_6_0-ibm-plugin-32bit >= 1.6.0_sr16.0-0.5.1`	Builds ZYPP Patch Nr: 8848
SUSE Linux Enterprise Server 11 SP1 LTSS	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9273
SUSE Linux Enterprise Server 11 SP1 LTSS	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9273
SUSE Linux Enterprise Server 11 SP1 LTSS	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9273
SUSE Linux Enterprise Server 11 SP2 LTSS	`java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-alsa >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-devel >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-plugin >= 1.7.0_sr7.0-0.5.1`	Builds SAT Patch Nr: 9275
SUSE Linux Enterprise Server 11 SP2 LTSS	`java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-devel >= 1.7.0_sr7.0-0.5.1` `java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1`	Builds SAT Patch Nr: 9275
SUSE Linux Enterprise Server 11 SP2 LTSS	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9274
SUSE Linux Enterprise Server 11 SP2 LTSS	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9274
SUSE Linux Enterprise Server 11 SP2 LTSS	`java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1` `java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1`	Builds SAT Patch Nr: 9274
openSUSE 12.3	`java-1_7_0-openjdk >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-accessibility >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-debuginfo >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-debugsource >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-demo >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-demo-debuginfo >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-devel >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-devel-debuginfo >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-headless >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-headless-debuginfo >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-javadoc >= 1.7.0.55-8.36.1` `java-1_7_0-openjdk-src >= 1.7.0.55-8.36.1`	Patchnames: openSUSE-2014-772
openSUSE 13.1	`java-1_7_0-openjdk >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-accessibility >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-debuginfo >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-debugsource >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-demo >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-demo-debuginfo >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-devel >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-devel-debuginfo >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-headless >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-headless-debuginfo >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-javadoc >= 1.7.0.55-24.17.1` `java-1_7_0-openjdk-src >= 1.7.0.55-24.17.1`	Patchnames: openSUSE-2014-773

CVE-2014-0429

Common Vulnerabilities and Exposures

Upstream information

Description

SUSE information

List of released packages

Services