CVE-2013-2449
First published: Mon Jun 17 2013(Updated: )
It was discovered that the GnomeFileTypeDetector did not check for read permissions. An untrusted Java application or applet could possibly use this flaw to disclose potentially sensitive information.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle JRE | <=1.7.0 | |
| Oracle JRE | =1.7.0 | |
| Oracle JRE | =1.7.0-update1 | |
| Oracle JRE | =1.7.0-update10 | |
| Oracle JRE | =1.7.0-update11 | |
| Oracle JRE | =1.7.0-update13 | |
| Oracle JRE | =1.7.0-update15 | |
| Oracle JRE | =1.7.0-update17 | |
| Oracle JRE | =1.7.0-update2 | |
| Oracle JRE | =1.7.0-update3 | |
| Oracle JRE | =1.7.0-update4 | |
| Oracle JRE | =1.7.0-update5 | |
| Oracle JRE | =1.7.0-update6 | |
| Oracle JRE | =1.7.0-update7 | |
| Oracle JRE | =1.7.0-update9 | |
| Oracle JDK | <=1.7.0 | |
| Oracle JDK | =1.7.0 | |
| Oracle JDK | =1.7.0-update1 | |
| Oracle JDK | =1.7.0-update10 | |
| Oracle JDK | =1.7.0-update11 | |
| Oracle JDK | =1.7.0-update13 | |
| Oracle JDK | =1.7.0-update15 | |
| Oracle JDK | =1.7.0-update17 | |
| Oracle JDK | =1.7.0-update2 | |
| Oracle JDK | =1.7.0-update3 | |
| Oracle JDK | =1.7.0-update4 | |
| Oracle JDK | =1.7.0-update5 | |
| Oracle JDK | =1.7.0-update6 | |
| Oracle JDK | =1.7.0-update7 | |
| Oracle JDK | =1.7.0-update9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://advisories.mageia.org/MGASA-2013-0185.html
- http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/b1a2b9ac9714
- http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html
- http://marc.info/?l=bugtraq&m=137545505800971&w=2
- http://rhn.redhat.com/errata/RHSA-2013-0963.html
- http://rhn.redhat.com/errata/RHSA-2013-1060.html
- http://secunia.com/advisories/54154
- http://security.gentoo.org/glsa/glsa-201406-32.xml
- http://www-01.ibm.com/support/docview.wss?uid=swg21642336
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:183
- http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html
- http://www.us-cert.gov/ncas/alerts/TA13-169A
- https://bugzilla.redhat.com/show_bug.cgi?id=975145
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17192
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18717
- https://rhn.redhat.com/errata/RHSA-2013-0958.html
- https://rhn.redhat.com/errata/RHSA-2013-0957.html
- https://rhn.redhat.com/errata/RHSA-2013-0963.html
- https://rhn.redhat.com/errata/RHSA-2013-1060.html
- http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-June/023849.html
- http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-June/023860.html
- http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-July/023895.html
- collector/redhat-bugzilla
- alias/CVE-2013-2449
- collector/nvd-index
- vendor/oracle
- canonical/oracle jre
- version/oracle jre/1.7.0
- version/oracle jre/1.7.0-update1
- version/oracle jre/1.7.0-update10
- version/oracle jre/1.7.0-update11
- version/oracle jre/1.7.0-update13
- version/oracle jre/1.7.0-update15
- version/oracle jre/1.7.0-update17
- version/oracle jre/1.7.0-update2
- version/oracle jre/1.7.0-update3
- version/oracle jre/1.7.0-update4
- version/oracle jre/1.7.0-update5
- version/oracle jre/1.7.0-update6
- version/oracle jre/1.7.0-update7
- version/oracle jre/1.7.0-update9
- canonical/oracle jdk
- version/oracle jdk/1.7.0
- version/oracle jdk/1.7.0-update1
- version/oracle jdk/1.7.0-update10
- version/oracle jdk/1.7.0-update11
- version/oracle jdk/1.7.0-update13
- version/oracle jdk/1.7.0-update15
- version/oracle jdk/1.7.0-update17
- version/oracle jdk/1.7.0-update2
- version/oracle jdk/1.7.0-update3
- version/oracle jdk/1.7.0-update4
- version/oracle jdk/1.7.0-update5
- version/oracle jdk/1.7.0-update6
- version/oracle jdk/1.7.0-update7
- version/oracle jdk/1.7.0-update9