Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "Incorrect ShortBandedRaster size checks" in 2D.
References
Link Providers
http://advisories.mageia.org/MGASA-2013-0185.html cve-icon cve-icon
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880 cve-icon cve-icon
http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/3cd4bec64e31 cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00029.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00031.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00000.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00003.html cve-icon cve-icon
http://marc.info/?l=bugtraq&m=137545505800971&w=2 cve-icon cve-icon
http://marc.info/?l=bugtraq&m=137545592101387&w=2 cve-icon cve-icon
http://rhn.redhat.com/errata/RHSA-2013-0963.html cve-icon cve-icon
http://rhn.redhat.com/errata/RHSA-2013-1059.html cve-icon cve-icon
http://rhn.redhat.com/errata/RHSA-2013-1060.html cve-icon cve-icon
http://rhn.redhat.com/errata/RHSA-2013-1081.html cve-icon cve-icon
http://rhn.redhat.com/errata/RHSA-2013-1455.html cve-icon cve-icon
http://rhn.redhat.com/errata/RHSA-2013-1456.html cve-icon cve-icon
http://secunia.com/advisories/54154 cve-icon cve-icon
http://security.gentoo.org/glsa/glsa-201406-32.xml cve-icon cve-icon
http://www-01.ibm.com/support/docview.wss?uid=swg21642336 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDVSA-2013:183 cve-icon cve-icon
http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html cve-icon cve-icon cve-icon
http://www.securityfocus.com/bid/60656 cve-icon cve-icon
http://www.us-cert.gov/ncas/alerts/TA13-169A cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2014:0414 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=975107 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2013-2472 cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16712 cve-icon cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18742 cve-icon cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18846 cve-icon cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19543 cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2013-2472 cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: oracle

Published: 2013-06-18T22:00:00

Updated: 2024-08-06T15:36:46.551Z

Reserved: 2013-03-05T00:00:00

Link: CVE-2013-2472

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-06-18T22:55:02.943

Modified: 2024-11-21T01:51:49.403

Link: CVE-2013-2472

cve-icon Redhat

Severity : Critical

Publid Date: 2013-06-18T00:00:00Z

Links: CVE-2013-2472 - Bugzilla