It was discovered that an error related to method handles exists in the Libraries component. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions.
External References: http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2013:0958 https://rhn.redhat.com/errata/RHSA-2013-0958.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:0957 https://rhn.redhat.com/errata/RHSA-2013-0957.html
OpenJDK7 upstream repositories commit: http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/9efb5fb77027
This issue has been addressed in following products: Supplementary for Red Hat Enterprise Linux 5 Supplementary for Red Hat Enterprise Linux 6 Via RHSA-2013:0963 https://rhn.redhat.com/errata/RHSA-2013-0963.html
This issue has been addressed in following products: Supplementary for Red Hat Enterprise Linux 5 Supplementary for Red Hat Enterprise Linux 6 Via RHSA-2013:1060 https://rhn.redhat.com/errata/RHSA-2013-1060.html
Fixed in IcedTea7 versions 2.1.9, 2.2.9, 2.3.10 and 2.4.1: http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-June/023849.html http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-June/023860.html http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-July/023895.html