CVE-2013-0427
First published: Sat Feb 02 2013(Updated: )
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Java Runtime Environment (JRE) | =1.7.0 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update1 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update10 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update11 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update2 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update3 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update4 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update5 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update6 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update7 | |
| Oracle Java Runtime Environment (JRE) | =1.7.0-update9 | |
| Oracle JDK 6 | =1.7.0 | |
| Oracle JDK 6 | =1.7.0-update1 | |
| Oracle JDK 6 | =1.7.0-update10 | |
| Oracle JDK 6 | =1.7.0-update11 | |
| Oracle JDK 6 | =1.7.0-update2 | |
| Oracle JDK 6 | =1.7.0-update3 | |
| Oracle JDK 6 | =1.7.0-update4 | |
| Oracle JDK 6 | =1.7.0-update5 | |
| Oracle JDK 6 | =1.7.0-update6 | |
| Oracle JDK 6 | =1.7.0-update7 | |
| Oracle JDK 6 | =1.7.0-update9 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update22 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update23 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update24 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update25 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update26 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update27 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update29 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update30 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update31 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update32 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update33 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update34 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update35 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update37 | |
| Oracle Java Runtime Environment (JRE) | =1.6.0-update38 | |
| Sun JRE | =1.6.0 | |
| Sun JRE | =1.6.0-update_1 | |
| Sun JRE | =1.6.0-update_10 | |
| Sun JRE | =1.6.0-update_11 | |
| Sun JRE | =1.6.0-update_12 | |
| Sun JRE | =1.6.0-update_13 | |
| Sun JRE | =1.6.0-update_14 | |
| Sun JRE | =1.6.0-update_15 | |
| Sun JRE | =1.6.0-update_16 | |
| Sun JRE | =1.6.0-update_17 | |
| Sun JRE | =1.6.0-update_18 | |
| Sun JRE | =1.6.0-update_19 | |
| Sun JRE | =1.6.0-update_2 | |
| Sun JRE | =1.6.0-update_20 | |
| Sun JRE | =1.6.0-update_21 | |
| Sun JRE | =1.6.0-update_3 | |
| Sun JRE | =1.6.0-update_4 | |
| Sun JRE | =1.6.0-update_5 | |
| Sun JRE | =1.6.0-update_6 | |
| Sun JRE | =1.6.0-update_7 | |
| Sun JRE | =1.6.0-update_9 | |
| Oracle JDK 6 | =1.6.0-update22 | |
| Oracle JDK 6 | =1.6.0-update23 | |
| Oracle JDK 6 | =1.6.0-update24 | |
| Oracle JDK 6 | =1.6.0-update25 | |
| Oracle JDK 6 | =1.6.0-update26 | |
| Oracle JDK 6 | =1.6.0-update27 | |
| Oracle JDK 6 | =1.6.0-update29 | |
| Oracle JDK 6 | =1.6.0-update30 | |
| Oracle JDK 6 | =1.6.0-update31 | |
| Oracle JDK 6 | =1.6.0-update32 | |
| Oracle JDK 6 | =1.6.0-update33 | |
| Oracle JDK 6 | =1.6.0-update34 | |
| Oracle JDK 6 | =1.6.0-update35 | |
| Oracle JDK 6 | =1.6.0-update37 | |
| Oracle JDK 6 | =1.6.0-update38 | |
| OpenJDK | =1.6.0 | |
| OpenJDK | =1.6.0-update_10 | |
| OpenJDK | =1.6.0-update_11 | |
| OpenJDK | =1.6.0-update_12 | |
| OpenJDK | =1.6.0-update_13 | |
| OpenJDK | =1.6.0-update_14 | |
| OpenJDK | =1.6.0-update_15 | |
| OpenJDK | =1.6.0-update_16 | |
| OpenJDK | =1.6.0-update_17 | |
| OpenJDK | =1.6.0-update_18 | |
| OpenJDK | =1.6.0-update_19 | |
| OpenJDK | =1.6.0-update_20 | |
| OpenJDK | =1.6.0-update_21 | |
| OpenJDK | =1.6.0-update_3 | |
| OpenJDK | =1.6.0-update_4 | |
| OpenJDK | =1.6.0-update_5 | |
| OpenJDK | =1.6.0-update_6 | |
| OpenJDK | =1.6.0-update_7 | |
| OpenJDK | =1.6.0-update1 | |
| OpenJDK | =1.6.0-update1_b06 | |
| OpenJDK | =1.6.0-update2 | |
| Oracle Java Runtime Environment (JRE) | =1.5.0-update36 | |
| Oracle Java Runtime Environment (JRE) | =1.5.0-update38 | |
| Sun JRE | =1.5.0 | |
| Sun JRE | =1.5.0-update1 | |
| Sun JRE | =1.5.0-update10 | |
| Sun JRE | =1.5.0-update11 | |
| Sun JRE | =1.5.0-update12 | |
| Sun JRE | =1.5.0-update13 | |
| Sun JRE | =1.5.0-update14 | |
| Sun JRE | =1.5.0-update15 | |
| Sun JRE | =1.5.0-update16 | |
| Sun JRE | =1.5.0-update17 | |
| Sun JRE | =1.5.0-update18 | |
| Sun JRE | =1.5.0-update19 | |
| Sun JRE | =1.5.0-update2 | |
| Sun JRE | =1.5.0-update20 | |
| Sun JRE | =1.5.0-update21 | |
| Sun JRE | =1.5.0-update22 | |
| Sun JRE | =1.5.0-update23 | |
| Sun JRE | =1.5.0-update24 | |
| Sun JRE | =1.5.0-update25 | |
| Sun JRE | =1.5.0-update26 | |
| Sun JRE | =1.5.0-update27 | |
| Sun JRE | =1.5.0-update28 | |
| Sun JRE | =1.5.0-update29 | |
| Sun JRE | =1.5.0-update3 | |
| Sun JRE | =1.5.0-update31 | |
| Sun JRE | =1.5.0-update33 | |
| Sun JRE | =1.5.0-update4 | |
| Sun JRE | =1.5.0-update5 | |
| Sun JRE | =1.5.0-update6 | |
| Sun JRE | =1.5.0-update7 | |
| Sun JRE | =1.5.0-update8 | |
| Sun JRE | =1.5.0-update9 | |
| Oracle JDK 6 | =1.5.0-update36 | |
| Oracle JDK 6 | =1.5.0-update38 | |
| OpenJDK | =1.5.0 | |
| OpenJDK | =1.5.0-update1 | |
| OpenJDK | =1.5.0-update10 | |
| OpenJDK | =1.5.0-update11 | |
| OpenJDK | =1.5.0-update11_b03 | |
| OpenJDK | =1.5.0-update12 | |
| OpenJDK | =1.5.0-update13 | |
| OpenJDK | =1.5.0-update14 | |
| OpenJDK | =1.5.0-update15 | |
| OpenJDK | =1.5.0-update16 | |
| OpenJDK | =1.5.0-update17 | |
| OpenJDK | =1.5.0-update18 | |
| OpenJDK | =1.5.0-update19 | |
| OpenJDK | =1.5.0-update2 | |
| OpenJDK | =1.5.0-update20 | |
| OpenJDK | =1.5.0-update21 | |
| OpenJDK | =1.5.0-update22 | |
| OpenJDK | =1.5.0-update23 | |
| OpenJDK | =1.5.0-update24 | |
| OpenJDK | =1.5.0-update25 | |
| OpenJDK | =1.5.0-update26 | |
| OpenJDK | =1.5.0-update27 | |
| OpenJDK | =1.5.0-update28 | |
| OpenJDK | =1.5.0-update29 | |
| OpenJDK | =1.5.0-update3 | |
| OpenJDK | =1.5.0-update31 | |
| OpenJDK | =1.5.0-update33 | |
| OpenJDK | =1.5.0-update4 | |
| OpenJDK | =1.5.0-update5 | |
| OpenJDK | =1.5.0-update6 | |
| OpenJDK | =1.5.0-update7 | |
| OpenJDK | =1.5.0-update7_b03 | |
| OpenJDK | =1.5.0-update8 | |
| OpenJDK | =1.5.0-update9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907455
- http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS
- http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/jdk/rev/87d135824bdf
- http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html
- http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html
- http://marc.info/?l=bugtraq&m=136439120408139&w=2
- http://marc.info/?l=bugtraq&m=136570436423916&w=2
- http://marc.info/?l=bugtraq&m=136733161405818&w=2
- http://rhn.redhat.com/errata/RHSA-2013-0236.html
- http://rhn.redhat.com/errata/RHSA-2013-0237.html
- http://rhn.redhat.com/errata/RHSA-2013-0245.html
- http://rhn.redhat.com/errata/RHSA-2013-0246.html
- http://rhn.redhat.com/errata/RHSA-2013-0247.html
- http://rhn.redhat.com/errata/RHSA-2013-1455.html
- http://rhn.redhat.com/errata/RHSA-2013-1456.html
- http://security.gentoo.org/glsa/glsa-201406-32.xml
- http://www.kb.cert.org/vuls/id/858729
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:095
- http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html
- http://www.securityfocus.com/bid/57724
- http://www.us-cert.gov/cas/techalerts/TA13-032A.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16013
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18641
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19245
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19488
- https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056
Frequently Asked Questions
What is the severity of CVE-2013-0427?
CVE-2013-0427 has been classified as a high-severity vulnerability due to its potential impact on the integrity of the Java Runtime Environment.
Which software versions are affected by CVE-2013-0427?
CVE-2013-0427 affects Oracle Java SE versions 5.0 through Update 38, 6 through Update 38, 7 through Update 11, and OpenJDK 6 and 7.
How can I fix CVE-2013-0427?
To mitigate the risk associated with CVE-2013-0427, users should update their Java Runtime Environment to the latest version that is not affected.
Can CVE-2013-0427 be exploited remotely?
Yes, CVE-2013-0427 can be exploited by remote attackers, potentially leading to unauthorized access or manipulation.
What are the potential consequences of CVE-2013-0427?
Successful exploitation of CVE-2013-0427 could allow attackers to affect the integrity of the Java applications running in the vulnerable environment.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/oracle java runtime environment (jre)
- version/oracle java runtime environment (jre)/1.7.0
- version/oracle java runtime environment (jre)/1.7.0-update1
- version/oracle java runtime environment (jre)/1.7.0-update10
- version/oracle java runtime environment (jre)/1.7.0-update11
- version/oracle java runtime environment (jre)/1.7.0-update2
- version/oracle java runtime environment (jre)/1.7.0-update3
- version/oracle java runtime environment (jre)/1.7.0-update4
- version/oracle java runtime environment (jre)/1.7.0-update5
- version/oracle java runtime environment (jre)/1.7.0-update6
- version/oracle java runtime environment (jre)/1.7.0-update7
- version/oracle java runtime environment (jre)/1.7.0-update9
- canonical/oracle jdk 6
- version/oracle jdk 6/1.7.0
- version/oracle jdk 6/1.7.0-update1
- version/oracle jdk 6/1.7.0-update10
- version/oracle jdk 6/1.7.0-update11
- version/oracle jdk 6/1.7.0-update2
- version/oracle jdk 6/1.7.0-update3
- version/oracle jdk 6/1.7.0-update4
- version/oracle jdk 6/1.7.0-update5
- version/oracle jdk 6/1.7.0-update6
- version/oracle jdk 6/1.7.0-update7
- version/oracle jdk 6/1.7.0-update9
- version/oracle java runtime environment (jre)/1.6.0-update22
- version/oracle java runtime environment (jre)/1.6.0-update23
- version/oracle java runtime environment (jre)/1.6.0-update24
- version/oracle java runtime environment (jre)/1.6.0-update25
- version/oracle java runtime environment (jre)/1.6.0-update26
- version/oracle java runtime environment (jre)/1.6.0-update27
- version/oracle java runtime environment (jre)/1.6.0-update29
- version/oracle java runtime environment (jre)/1.6.0-update30
- version/oracle java runtime environment (jre)/1.6.0-update31
- version/oracle java runtime environment (jre)/1.6.0-update32
- version/oracle java runtime environment (jre)/1.6.0-update33
- version/oracle java runtime environment (jre)/1.6.0-update34
- version/oracle java runtime environment (jre)/1.6.0-update35
- version/oracle java runtime environment (jre)/1.6.0-update37
- version/oracle java runtime environment (jre)/1.6.0-update38
- vendor/sun
- canonical/sun jre
- version/sun jre/1.6.0
- version/sun jre/1.6.0-update_1
- version/sun jre/1.6.0-update_10
- version/sun jre/1.6.0-update_11
- version/sun jre/1.6.0-update_12
- version/sun jre/1.6.0-update_13
- version/sun jre/1.6.0-update_14
- version/sun jre/1.6.0-update_15
- version/sun jre/1.6.0-update_16
- version/sun jre/1.6.0-update_17
- version/sun jre/1.6.0-update_18
- version/sun jre/1.6.0-update_19
- version/sun jre/1.6.0-update_2
- version/sun jre/1.6.0-update_20
- version/sun jre/1.6.0-update_21
- version/sun jre/1.6.0-update_3
- version/sun jre/1.6.0-update_4
- version/sun jre/1.6.0-update_5
- version/sun jre/1.6.0-update_6
- version/sun jre/1.6.0-update_7
- version/sun jre/1.6.0-update_9
- version/oracle jdk 6/1.6.0-update22
- version/oracle jdk 6/1.6.0-update23
- version/oracle jdk 6/1.6.0-update24
- version/oracle jdk 6/1.6.0-update25
- version/oracle jdk 6/1.6.0-update26
- version/oracle jdk 6/1.6.0-update27
- version/oracle jdk 6/1.6.0-update29
- version/oracle jdk 6/1.6.0-update30
- version/oracle jdk 6/1.6.0-update31
- version/oracle jdk 6/1.6.0-update32
- version/oracle jdk 6/1.6.0-update33
- version/oracle jdk 6/1.6.0-update34
- version/oracle jdk 6/1.6.0-update35
- version/oracle jdk 6/1.6.0-update37
- version/oracle jdk 6/1.6.0-update38
- canonical/openjdk
- version/openjdk/1.6.0
- version/openjdk/1.6.0-update_10
- version/openjdk/1.6.0-update_11
- version/openjdk/1.6.0-update_12
- version/openjdk/1.6.0-update_13
- version/openjdk/1.6.0-update_14
- version/openjdk/1.6.0-update_15
- version/openjdk/1.6.0-update_16
- version/openjdk/1.6.0-update_17
- version/openjdk/1.6.0-update_18
- version/openjdk/1.6.0-update_19
- version/openjdk/1.6.0-update_20
- version/openjdk/1.6.0-update_21
- version/openjdk/1.6.0-update_3
- version/openjdk/1.6.0-update_4
- version/openjdk/1.6.0-update_5
- version/openjdk/1.6.0-update_6
- version/openjdk/1.6.0-update_7
- version/openjdk/1.6.0-update1
- version/openjdk/1.6.0-update1_b06
- version/openjdk/1.6.0-update2
- version/oracle java runtime environment (jre)/1.5.0-update36
- version/oracle java runtime environment (jre)/1.5.0-update38
- version/sun jre/1.5.0
- version/sun jre/1.5.0-update1
- version/sun jre/1.5.0-update10
- version/sun jre/1.5.0-update11
- version/sun jre/1.5.0-update12
- version/sun jre/1.5.0-update13
- version/sun jre/1.5.0-update14
- version/sun jre/1.5.0-update15
- version/sun jre/1.5.0-update16
- version/sun jre/1.5.0-update17
- version/sun jre/1.5.0-update18
- version/sun jre/1.5.0-update19
- version/sun jre/1.5.0-update2
- version/sun jre/1.5.0-update20
- version/sun jre/1.5.0-update21
- version/sun jre/1.5.0-update22
- version/sun jre/1.5.0-update23
- version/sun jre/1.5.0-update24
- version/sun jre/1.5.0-update25
- version/sun jre/1.5.0-update26
- version/sun jre/1.5.0-update27
- version/sun jre/1.5.0-update28
- version/sun jre/1.5.0-update29
- version/sun jre/1.5.0-update3
- version/sun jre/1.5.0-update31
- version/sun jre/1.5.0-update33
- version/sun jre/1.5.0-update4
- version/sun jre/1.5.0-update5
- version/sun jre/1.5.0-update6
- version/sun jre/1.5.0-update7
- version/sun jre/1.5.0-update8
- version/sun jre/1.5.0-update9
- version/oracle jdk 6/1.5.0-update36
- version/oracle jdk 6/1.5.0-update38
- version/openjdk/1.5.0
- version/openjdk/1.5.0-update1
- version/openjdk/1.5.0-update10
- version/openjdk/1.5.0-update11
- version/openjdk/1.5.0-update11_b03
- version/openjdk/1.5.0-update12
- version/openjdk/1.5.0-update13
- version/openjdk/1.5.0-update14
- version/openjdk/1.5.0-update15
- version/openjdk/1.5.0-update16
- version/openjdk/1.5.0-update17
- version/openjdk/1.5.0-update18
- version/openjdk/1.5.0-update19
- version/openjdk/1.5.0-update2
- version/openjdk/1.5.0-update20
- version/openjdk/1.5.0-update21
- version/openjdk/1.5.0-update22
- version/openjdk/1.5.0-update23
- version/openjdk/1.5.0-update24
- version/openjdk/1.5.0-update25
- version/openjdk/1.5.0-update26
- version/openjdk/1.5.0-update27
- version/openjdk/1.5.0-update28
- version/openjdk/1.5.0-update29
- version/openjdk/1.5.0-update3
- version/openjdk/1.5.0-update31
- version/openjdk/1.5.0-update33
- version/openjdk/1.5.0-update4
- version/openjdk/1.5.0-update5
- version/openjdk/1.5.0-update6
- version/openjdk/1.5.0-update7
- version/openjdk/1.5.0-update7_b03
- version/openjdk/1.5.0-update8
- version/openjdk/1.5.0-update9