What is the severity of CVE-2015-0460?

CVE-2015-0460 is a significant vulnerability that can affect confidentiality, integrity, and availability, making it critical to address.

How do I fix CVE-2015-0460?

To remediate CVE-2015-0460, update your Oracle Java SE or IcedTea packages to the latest recommended versions.

Which versions of Oracle Java are affected by CVE-2015-0460?

CVE-2015-0460 affects Oracle Java SE versions 5.0u81, 6u91, 7u76, and 8u40.

Is IcedTea vulnerable to CVE-2015-0460?

Yes, IcedTea6 and IcedTea7 are vulnerable to CVE-2015-0460 if they are at versions below 1.13.7 and 2.5.5 respectively.

What applications are impacted by CVE-2015-0460?

Applications utilizing vulnerable versions of Oracle Java or IcedTea can be impacted by CVE-2015-0460, particularly untrusted Java applications.

Vulnerability/
CVE-2015-0460

critical

9.3

13/4/2015

16/4/2015

6/8/2024

CVE-2015-0460

First published: Mon Apr 13 2015(Updated: )

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

Credit: secalert_us@oracle.com

Affected Software	Affected Version	How to fix
redhat/IcedTea6	<1.13.7	1.13.7
redhat/IcedTea7	<2.5.5	2.5.5
Oracle JDK 6	=1.5.0-update8
Oracle JDK 6	=1.6.0-update91
Oracle JDK 6	=1.7.0-update76
Oracle JDK 6	=1.8.0-update40
Oracle Java Runtime Environment (JRE)	=1.5.0-update81
Oracle Java Runtime Environment (JRE)	=1.6.0-update91
Oracle Java Runtime Environment (JRE)	=1.7.0-update76
Oracle Java Runtime Environment (JRE)	=1.8.0-update40

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-0460?
CVE-2015-0460 is a significant vulnerability that can affect confidentiality, integrity, and availability, making it critical to address.
How do I fix CVE-2015-0460?
To remediate CVE-2015-0460, update your Oracle Java SE or IcedTea packages to the latest recommended versions.
Which versions of Oracle Java are affected by CVE-2015-0460?
CVE-2015-0460 affects Oracle Java SE versions 5.0u81, 6u91, 7u76, and 8u40.
Is IcedTea vulnerable to CVE-2015-0460?
Yes, IcedTea6 and IcedTea7 are vulnerable to CVE-2015-0460 if they are at versions below 1.13.7 and 2.5.5 respectively.
What applications are impacted by CVE-2015-0460?
Applications utilizing vulnerable versions of Oracle Java or IcedTea can be impacted by CVE-2015-0460, particularly untrusted Java applications.

agent/type
agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2015-0460
agent/software-canonical-lookup
agent/severity
agent/author
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
package-manager/redhat
vendor/oracle
canonical/oracle jdk 6
version/oracle jdk 6/1.5.0-update8
version/oracle jdk 6/1.6.0-update91
version/oracle jdk 6/1.7.0-update76
version/oracle jdk 6/1.8.0-update40
canonical/oracle java runtime environment (jre)
version/oracle java runtime environment (jre)/1.5.0-update81
version/oracle java runtime environment (jre)/1.6.0-update91
version/oracle java runtime environment (jre)/1.7.0-update76
version/oracle java runtime environment (jre)/1.8.0-update40