790725 – (CVE-2012-0504) CVE-2012-0504 Oracle JDK: unspecified vulnerability fixed in 6u31 and 7u3 (Install)

Bug 790725 (CVE-2012-0504) - CVE-2012-0504 Oracle JDK: unspecified vulnerability fixed in 6u31 and 7u3 (Install)

Summary: CVE-2012-0504 Oracle JDK: unspecified vulnerability fixed in 6u31 and 7u3 (In...

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2012-0504
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	786724
TreeView+	depends on / blocked

Reported:	2012-02-15 09:26 UTC by Tomas Hoger
Modified:	2021-02-24 13:09 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2012-02-15 09:33:02 UTC
Embargoed:

Attachments	(Terms of Use)

Description Tomas Hoger 2012-02-15 09:26:07 UTC

Java SE 6 Update 31 and Java SE 7 Update 3 of Oracle/Sun Java fixes an unspecified vulnerability in the Install component (CVE-2012-0499). Upstream has CVSSv2 scored this issue as: 10/AV:N/AC:L/Au:N/C:C/I:C/A:C

http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html

Comment 1 Tomas Hoger 2012-02-15 09:33:02 UTC

This issue affects Java Update mechanism (see Note 4 on the Oracle CPU Patch Advisory page), which is only available on Microsoft Windows platform:

http://www.java.com/en/download/help/java_update.xml

Comment 2 Vincent Danen 2013-08-08 15:51:32 UTC

Statement:

Not vulnerable.  This issue affects the Java Update mechanism which is only available on the Microsoft Windows platform.

Note You need to log in before you can comment on or make changes to this bug.