First published: Mon Jun 17 2013(Updated: )
It was discovered that the DOMCanonicalizationMethod did not properly verify the canonicalization algorithm. A remote attacker could possibly exploit this flaw to bypass correct XML signature verification.
Credit: secalert_us@oracle.com
Affected Software | Affected Version | How to fix |
---|---|---|
Oracle JDK | =1.6.0-update22 | |
Oracle JDK | =1.6.0-update23 | |
Oracle JDK | =1.6.0-update24 | |
Oracle JDK | =1.6.0-update25 | |
Oracle JDK | =1.6.0-update26 | |
Oracle JDK | =1.6.0-update27 | |
Oracle JDK | =1.6.0-update29 | |
Oracle JDK | =1.6.0-update30 | |
Oracle JDK | =1.6.0-update31 | |
Oracle JDK | =1.6.0-update32 | |
Oracle JDK | =1.6.0-update33 | |
Oracle JDK | =1.6.0-update34 | |
Oracle JDK | =1.6.0-update35 | |
Oracle JDK | =1.6.0-update37 | |
Oracle JDK | =1.6.0-update38 | |
Oracle JDK | =1.6.0-update39 | |
Oracle JDK | =1.6.0-update41 | |
Oracle JDK | =1.6.0-update43 | |
Sun JDK | =1.6.0 | |
Sun JDK | =1.6.0-update_10 | |
Sun JDK | =1.6.0-update_11 | |
Sun JDK | =1.6.0-update_12 | |
Sun JDK | =1.6.0-update_13 | |
Sun JDK | =1.6.0-update_14 | |
Sun JDK | =1.6.0-update_15 | |
Sun JDK | =1.6.0-update_16 | |
Sun JDK | =1.6.0-update_17 | |
Sun JDK | =1.6.0-update_18 | |
Sun JDK | =1.6.0-update_19 | |
Sun JDK | =1.6.0-update_20 | |
Sun JDK | =1.6.0-update_21 | |
Sun JDK | =1.6.0-update_3 | |
Sun JDK | =1.6.0-update_4 | |
Sun JDK | =1.6.0-update_5 | |
Sun JDK | =1.6.0-update_6 | |
Sun JDK | =1.6.0-update_7 | |
Sun JDK | =1.6.0-update1 | |
Sun JDK | =1.6.0-update1_b06 | |
Sun JDK | =1.6.0-update2 | |
Oracle JRE | =1.7.0 | |
Oracle JRE | =1.7.0-update1 | |
Oracle JRE | =1.7.0-update10 | |
Oracle JRE | =1.7.0-update11 | |
Oracle JRE | =1.7.0-update13 | |
Oracle JRE | =1.7.0-update15 | |
Oracle JRE | =1.7.0-update17 | |
Oracle JRE | =1.7.0-update2 | |
Oracle JRE | =1.7.0-update3 | |
Oracle JRE | =1.7.0-update4 | |
Oracle JRE | =1.7.0-update5 | |
Oracle JRE | =1.7.0-update6 | |
Oracle JRE | =1.7.0-update7 | |
Oracle JRE | =1.7.0-update9 | |
Oracle JRockit | >=r27.7.1<=r27.7.5 | |
Oracle JRockit | >=r28.0.0<=r28.2.7 | |
Oracle OpenJDK | =1.7.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.