1119918 – (CVE-2014-4247) CVE-2014-4247 Oracle JDK: unspecified vulnerability fixed in 8u11 (JavaFX)

Bug 1119918 (CVE-2014-4247) - CVE-2014-4247 Oracle JDK: unspecified vulnerability fixed in 8u11 (JavaFX)

Summary: CVE-2014-4247 Oracle JDK: unspecified vulnerability fixed in 8u11 (JavaFX)

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2014-4247
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	urgent
Severity:	urgent
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1115835
TreeView+	depends on / blocked

Reported:	2014-07-15 20:26 UTC by Tomas Hoger
Modified:	2021-02-17 06:23 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2014-07-15 20:33:49 UTC
Embargoed:

Attachments	(Terms of Use)

Description Tomas Hoger 2014-07-15 20:26:01 UTC

Oracle Java SE 8u11 fixes an unspecified vulnerability in the JavaFX component (CVE-2014-4247).  Upstream has CVSSv2 scored this issue as: 9.3/AV:N/AC:M/Au:N/C:C/I:C/A:C

External Reference:

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html#AppendixJAVA

Comment 1 Tomas Hoger 2014-07-15 20:33:49 UTC

This only affected Oracle Java SE 8.  Only versions 6 and 7 are currently provided as part of Oracle Java channels for Red Hat Enterprise Linux.

Note You need to log in before you can comment on or make changes to this bug.