{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-04-15T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-04T19:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle"}, "references": [{"name": "USN-2187-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-2187-1"}, {"name": "RHSA-2014:0675", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0675.html"}, {"name": "RHSA-2014:0414", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2014:0414"}, {"name": "GLSA-201406-32", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml"}, {"name": "USN-2191-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-2191-1"}, {"name": "HPSBUX03091", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21672080"}, {"name": "RHSA-2014:0413", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2014:0413"}, {"name": "59058", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/59058"}, {"name": "SSRT101667", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"name": "HPSBUX03092", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"name": "RHSA-2014:0685", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0685.html"}, {"name": "DSA-2912", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2014/dsa-2912"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html"}, {"name": "66903", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/66903"}, {"name": "58415", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/58415"}, {"name": "SSRT101668", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676746"}, {"name": "GLSA-201502-12", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-201502-12.xml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2014-0446", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "USN-2187-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2187-1"}, {"name": "RHSA-2014:0675", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2014-0675.html"}, {"name": "RHSA-2014:0414", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2014:0414"}, {"name": "GLSA-201406-32", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml"}, {"name": "USN-2191-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2191-1"}, {"name": "HPSBUX03091", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21672080", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21672080"}, {"name": "RHSA-2014:0413", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2014:0413"}, {"name": "59058", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/59058"}, {"name": "SSRT101667", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"name": "HPSBUX03092", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"name": "RHSA-2014:0685", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2014-0685.html"}, {"name": "DSA-2912", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2014/dsa-2912"}, {"name": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html"}, {"name": "66903", "refsource": "BID", "url": "http://www.securityfocus.com/bid/66903"}, {"name": "58415", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/58415"}, {"name": "SSRT101668", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21676746", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676746"}, {"name": "GLSA-201502-12", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201502-12.xml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T09:13:10.652Z"}, "title": "CVE Program Container", "references": [{"name": "USN-2187-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/USN-2187-1"}, {"name": "RHSA-2014:0675", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0675.html"}, {"name": "RHSA-2014:0414", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2014:0414"}, {"name": "GLSA-201406-32", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml"}, {"name": "USN-2191-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/USN-2191-1"}, {"name": "HPSBUX03091", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21672080"}, {"name": "RHSA-2014:0413", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2014:0413"}, {"name": "59058", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/59058"}, {"name": "SSRT101667", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"name": "HPSBUX03092", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"name": "RHSA-2014:0685", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0685.html"}, {"name": "DSA-2912", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2014/dsa-2912"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html"}, {"name": "66903", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/66903"}, {"name": "58415", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/58415"}, {"name": "SSRT101668", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676746"}, {"name": "GLSA-201502-12", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-201502-12.xml"}]}]}, "cveMetadata": {"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2014-0446", "datePublished": "2014-04-15T22:00:00", "dateReserved": "2013-12-12T00:00:00", "dateUpdated": "2024-08-06T09:13:10.652Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*", "matchCriteriaId": "01EDA41C-6B2E-49AF-B503-EB3882265C11", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*", "matchCriteriaId": "CB66DB75-2B16-4EBF-9B93-CE49D8086E41", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*", "matchCriteriaId": "E2076871-2E80-4605-A470-A41C1A8EC7EE", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*", "matchCriteriaId": "7F61F047-129C-41A6-8A27-FFCBB8563E91", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "matchCriteriaId": "815D70A8-47D3-459C-A32C-9FEACA0659D1", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oracle:jdk:1.5.0:update61:*:*:*:*:*:*", "matchCriteriaId": "086781C9-08D6-4268-AEB4-F60365F51562", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update71:*:*:*:*:*:*", "matchCriteriaId": "DDD27C84-32AD-47CC-B47B-7FBA1321E717", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update51:*:*:*:*:*:*", "matchCriteriaId": "3343969B-2926-4C55-8787-792ABF6429D7", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:jdk:1.8.0:-:*:*:*:*:*:*", "matchCriteriaId": "F906BFD6-7654-46C5-8240-3A50949CAE85", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:jre:1.5.0:update61:*:*:*:*:*:*", "matchCriteriaId": "E80738D2-3CE2-4EB6-AE4C-F90C2C93BFE3", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update71:*:*:*:*:*:*", "matchCriteriaId": "78BC97BC-F745-45E0-8749-41535F7C374E", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update51:*:*:*:*:*:*", "matchCriteriaId": "4DA64EFB-8416-4A0B-91B5-F02CC1A79D40", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:jre:1.8.0:-:*:*:*:*:*:*", "matchCriteriaId": "CA226495-4733-485A-9D53-85874434815D", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Oracle Java SE 5.0u61, 6u71, 7u51, y 8, y Java SE Embedded 7u51, permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos relacionados con las librer\u00edas."}], "id": "CVE-2014-0446", "lastModified": "2024-11-21T02:02:08.353", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-04-16T00:55:24.027", "references": [{"source": "secalert_us@oracle.com", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"source": "secalert_us@oracle.com", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"source": "secalert_us@oracle.com", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"source": "secalert_us@oracle.com", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0675.html"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0685.html"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/58415"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/59058"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-201502-12.xml"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21672080"}, {"source": "secalert_us@oracle.com", "tags": ["Broken Link"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676746"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://www.debian.org/security/2014/dsa-2912"}, {"source": "secalert_us@oracle.com", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/66903"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://www.ubuntu.com/usn/USN-2187-1"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "http://www.ubuntu.com/usn/USN-2191-1"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2014:0413"}, {"source": "secalert_us@oracle.com", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2014:0414"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=140852886808946&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=140852974709252&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0675.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0685.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/58415"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/59058"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-201502-12.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21672080"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676746"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://www.debian.org/security/2014/dsa-2912"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/66903"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://www.ubuntu.com/usn/USN-2187-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://www.ubuntu.com/usn/USN-2191-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2014:0413"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2014:0414"}], "sourceIdentifier": "secalert_us@oracle.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2014:0413", "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5", "package": "java-1.7.0-oracle-1:1.7.0.55-1jpp.2.el5_10", "product_name": "Oracle Java for Red Hat Enterprise Linux 5", "release_date": "2014-04-17T00:00:00Z"}, {"advisory": "RHSA-2014:0414", "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5", "package": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10", "product_name": "Oracle Java for Red Hat Enterprise Linux 5", "release_date": "2014-04-17T00:00:00Z"}, {"advisory": "RHSA-2014:0413", "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6", "package": "java-1.7.0-oracle-1:1.7.0.55-1jpp.1.el6_5", "product_name": "Oracle Java for Red Hat Enterprise Linux 6", "release_date": "2014-04-17T00:00:00Z"}, {"advisory": "RHSA-2014:0414", "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6", "package": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5", "product_name": "Oracle Java for Red Hat Enterprise Linux 6", "release_date": "2014-04-17T00:00:00Z"}, {"advisory": "RHSA-2014:0407", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "java-1.7.0-openjdk-1:1.7.0.55-2.4.7.1.el5_10", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2014-04-16T00:00:00Z"}, {"advisory": "RHSA-2014:0408", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "java-1.6.0-openjdk-1:1.6.0.0-5.1.13.3.el5_10", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2014-04-16T00:00:00Z"}, {"advisory": "RHSA-2014:0406", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "java-1.7.0-openjdk-1:1.7.0.55-2.4.7.1.el6_5", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2014-04-16T00:00:00Z"}, {"advisory": "RHSA-2014:0408", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "java-1.6.0-openjdk-1:1.6.0.0-5.1.13.3.el6_5", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2014-04-16T00:00:00Z"}, {"advisory": "RHSA-2014:0675", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "java-1.7.0-openjdk-1:1.7.0.55-2.4.7.2.el7_0", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2014-06-10T00:00:00Z"}, {"advisory": "RHSA-2014:0685", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "java-1.6.0-openjdk-1:1.6.0.0-6.1.13.3.el7_0", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2014-06-10T00:00:00Z"}, {"advisory": "RHSA-2014:0982", "cpe": "cpe:/a:redhat:network_satellite:5.4::el5", "package": "java-1.6.0-ibm-1:1.6.0.16.0-1jpp.1.el5", "product_name": "Red Hat Network Satellite Server v 5.4", "release_date": "2014-07-29T00:00:00Z"}, {"advisory": "RHSA-2014:0982", "cpe": "cpe:/a:redhat:network_satellite:5.5::el5", "package": "java-1.6.0-ibm-1:1.6.0.16.0-1jpp.1.el5", "product_name": "Red Hat Network Satellite Server v 5.5", "release_date": "2014-07-29T00:00:00Z"}, {"advisory": "RHSA-2014:0982", "cpe": "cpe:/a:redhat:network_satellite:5.6::el5", "package": "java-1.6.0-ibm-1:1.6.0.16.0-1jpp.1.el5", "product_name": "Red Hat Satellite 5.6", "release_date": "2014-07-29T00:00:00Z"}, {"advisory": "RHSA-2014:0412", "cpe": "cpe:/a:redhat:rhel_extras:5", "package": "java-1.7.0-oracle-1:1.7.0.55-1jpp.2.el5_10", "product_name": "Supplementary for Red Hat Enterprise Linux 5", "release_date": "2014-04-17T00:00:00Z"}, {"advisory": "RHSA-2014:0486", "cpe": "cpe:/a:redhat:rhel_extras:5", "package": "java-1.7.0-ibm-1:1.7.0.7.0-1jpp.1.el5_10", "product_name": "Supplementary for Red Hat Enterprise Linux 5", "release_date": "2014-05-13T00:00:00Z"}, {"advisory": "RHSA-2014:0508", "cpe": "cpe:/a:redhat:rhel_extras:5", "package": "java-1.6.0-ibm-1:1.6.0.16.0-1jpp.1.el5_10", "product_name": "Supplementary for Red Hat Enterprise Linux 5", "release_date": "2014-05-15T00:00:00Z"}, {"advisory": "RHSA-2014:0509", "cpe": "cpe:/a:redhat:rhel_extras:5", "package": "java-1.5.0-ibm-1:1.5.0.16.6-1jpp.1.el5_10", "product_name": "Supplementary for Red Hat Enterprise Linux 5", "release_date": "2014-05-15T00:00:00Z"}, {"advisory": "RHSA-2014:0412", "cpe": "cpe:/a:redhat:rhel_extras:6", "package": "java-1.7.0-oracle-1:1.7.0.55-1jpp.1.el6_5", "product_name": "Supplementary for Red Hat Enterprise Linux 6", "release_date": "2014-04-17T00:00:00Z"}, {"advisory": "RHSA-2014:0486", "cpe": "cpe:/a:redhat:rhel_extras:6", "package": "java-1.7.0-ibm-1:1.7.0.7.0-1jpp.1.el6_5", "product_name": "Supplementary for Red Hat Enterprise Linux 6", "release_date": "2014-05-13T00:00:00Z"}, {"advisory": "RHSA-2014:0508", "cpe": "cpe:/a:redhat:rhel_extras:6", "package": "java-1.6.0-ibm-1:1.6.0.16.0-1jpp.1.el6_5", "product_name": "Supplementary for Red Hat Enterprise Linux 6", "release_date": "2014-05-15T00:00:00Z"}, {"advisory": "RHSA-2014:0509", "cpe": "cpe:/a:redhat:rhel_extras:6", "package": "java-1.5.0-ibm-1:1.5.0.16.6-1jpp.1.el6_5", "product_name": "Supplementary for Red Hat Enterprise Linux 6", "release_date": "2014-05-15T00:00:00Z"}, {"advisory": "RHSA-2014:0705", "cpe": "cpe:/a:redhat:rhel_extras:7", "package": "java-1.7.1-ibm-1:1.7.1.1.0-1jpp.2.el7_0", "product_name": "Supplementary for Red Hat Enterprise Linux 7", "release_date": "2014-06-10T00:00:00Z"}], "bugzilla": {"description": "OpenJDK: Protect logger handlers (Libraries, 8029740)", "id": "1087439", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087439"}, "csaw": false, "cvss": {"cvss_base_score": "6.8", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "status": "verified"}, "details": ["Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries."], "name": "CVE-2014-0446", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "java-1.7.0-oracle", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2014-04-15T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2014-0446\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-0446\nhttp://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA"], "threat_severity": "Important", "upstream_fix": "icedtea 1.13.3, icedtea 2.4.7"}