Details of VAR-201304-0372

ID

VAR-201304-0372

CVE

CVE-2013-2417

TITLE

Oracle Java SE of Java Runtime Environment In Networking Processing vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2013-002366

DESCRIPTION

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an information leak involving InetAddress serialization. CVE has not investigated the apparent discrepancy between vendor reports regarding the impact of this issue. The vulnerability can be exploited over multiple protocols. This issue affects the 'Networking' sub-component. This vulnerability affects the following supported versions: 7 Update 17 , 6 Update 43 , 5.0 Update 41. ========================================================================== Ubuntu Security Notice USN-1806-1 April 23, 2013 openjdk-7 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.10 Summary: Several security issues were fixed in OpenJDK 7. Software Description: - openjdk-7: Open Source Java implementation Details: Ben Murphy discovered a vulnerability in the OpenJDK JRE related to information disclosure and data integrity. (CVE-2013-0401) James Forshaw discovered a vulnerability in the OpenJDK JRE related to information disclosure, data integrity and availability. (CVE-2013-1488) Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity and availability. An attacker could exploit these to cause a denial of service or expose sensitive data over the network. (CVE-2013-1518, CVE-2013-1537, CVE-2013-1557, CVE-2013-1569, CVE-2013-2383, CVE-2013-2384, CVE-2013-2420, CVE-2013-2421, CVE-2013-2422, CVE-2013-2426, CVE-2013-2429, CVE-2013-2430, CVE-2013-2431, CVE-2013-2436) Two vulnerabilities were discovered in the OpenJDK JRE related to confidentiality. An attacker could exploit these to expose sensitive data over the network. (CVE-2013-2415, CVE-2013-2424) Two vulnerabilities were discovered in the OpenJDK JRE related to availability. An attacker could exploit these to cause a denial of service. (CVE-2013-2417, CVE-2013-2419) A vulnerability was discovered in the OpenJDK JRE related to data integrity. (CVE-2013-2423) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.10: icedtea-7-jre-jamvm 7u21-2.3.9-0ubuntu0.12.10.1 openjdk-7-jre 7u21-2.3.9-0ubuntu0.12.10.1 openjdk-7-jre-headless 7u21-2.3.9-0ubuntu0.12.10.1 openjdk-7-jre-lib 7u21-2.3.9-0ubuntu0.12.10.1 openjdk-7-jre-zero 7u21-2.3.9-0ubuntu0.12.10.1 This update uses a new upstream release, which includes additional bug fixes. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201401-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Oracle JRE/JDK: Multiple vulnerabilities Date: January 27, 2014 Bugs: #404071, #421073, #433094, #438706, #451206, #455174, #458444, #460360, #466212, #473830, #473980, #488210, #498148 ID: 201401-30 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been found in the Oracle JRE/JDK, allowing attackers to cause unspecified impact. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-java/sun-jdk <= 1.6.0.45 Vulnerable! 2 dev-java/oracle-jdk-bin < 1.7.0.51 >= 1.7.0.51 * 3 dev-java/sun-jre-bin <= 1.6.0.45 Vulnerable! 4 dev-java/oracle-jre-bin < 1.7.0.51 >= 1.7.0.51 * 5 app-emulation/emul-linux-x86-java < 1.7.0.51 >= 1.7.0.51 * ------------------------------------------------------------------- NOTE: Certain packages are still vulnerable. Users should migrate to another package if one is available or wait for the existing packages to be marked stable by their architecture maintainers. ------------------------------------------------------------------- NOTE: Packages marked with asterisks require manual intervention! ------------------------------------------------------------------- 5 affected packages Description =========== Multiple vulnerabilities have been reported in the Oracle Java implementation. Please review the CVE identifiers referenced below for details. Furthermore, a local or remote attacker could exploit these vulnerabilities to cause unspecified impact, possibly including remote execution of arbitrary code. Workaround ========== There is no known workaround at this time. Resolution ========== All Oracle JDK 1.7 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jdk-bin-1.7.0.51" All Oracle JRE 1.7 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jre-bin-1.7.0.51" All users of the precompiled 32-bit Oracle JRE should upgrade to the latest version: # emerge --sync # emerge -a -1 -v ">=app-emulation/emul-linux-x86-java-1.7.0.51" All Sun Microsystems JDK/JRE 1.6 users are suggested to upgrade to one of the newer Oracle packages like dev-java/oracle-jdk-bin or dev-java/oracle-jre-bin or choose another alternative we provide; eg. the IBM JDK/JRE or the open source IcedTea. References ========== [ 1 ] CVE-2011-3563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563 [ 2 ] CVE-2011-5035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035 [ 3 ] CVE-2012-0497 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497 [ 4 ] CVE-2012-0498 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0498 [ 5 ] CVE-2012-0499 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0499 [ 6 ] CVE-2012-0500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0500 [ 7 ] CVE-2012-0501 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501 [ 8 ] CVE-2012-0502 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502 [ 9 ] CVE-2012-0503 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503 [ 10 ] CVE-2012-0504 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0504 [ 11 ] CVE-2012-0505 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505 [ 12 ] CVE-2012-0506 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506 [ 13 ] CVE-2012-0507 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0507 [ 14 ] CVE-2012-0547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547 [ 15 ] CVE-2012-1531 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1531 [ 16 ] CVE-2012-1532 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1532 [ 17 ] CVE-2012-1533 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1533 [ 18 ] CVE-2012-1541 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1541 [ 19 ] CVE-2012-1682 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1682 [ 20 ] CVE-2012-1711 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711 [ 21 ] CVE-2012-1713 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713 [ 22 ] CVE-2012-1716 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716 [ 23 ] CVE-2012-1717 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717 [ 24 ] CVE-2012-1718 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718 [ 25 ] CVE-2012-1719 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719 [ 26 ] CVE-2012-1721 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1721 [ 27 ] CVE-2012-1722 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1722 [ 28 ] CVE-2012-1723 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723 [ 29 ] CVE-2012-1724 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724 [ 30 ] CVE-2012-1725 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725 [ 31 ] CVE-2012-1726 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726 [ 32 ] CVE-2012-3136 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3136 [ 33 ] CVE-2012-3143 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3143 [ 34 ] CVE-2012-3159 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3159 [ 35 ] CVE-2012-3174 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3174 [ 36 ] CVE-2012-3213 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3213 [ 37 ] CVE-2012-3216 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216 [ 38 ] CVE-2012-3342 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3342 [ 39 ] CVE-2012-4416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416 [ 40 ] CVE-2012-4681 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4681 [ 41 ] CVE-2012-5067 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5067 [ 42 ] CVE-2012-5068 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068 [ 43 ] CVE-2012-5069 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069 [ 44 ] CVE-2012-5070 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070 [ 45 ] CVE-2012-5071 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071 [ 46 ] CVE-2012-5072 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072 [ 47 ] CVE-2012-5073 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073 [ 48 ] CVE-2012-5074 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074 [ 49 ] CVE-2012-5075 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075 [ 50 ] CVE-2012-5076 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076 [ 51 ] CVE-2012-5077 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077 [ 52 ] CVE-2012-5079 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5079 [ 53 ] CVE-2012-5081 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081 [ 54 ] CVE-2012-5083 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5083 [ 55 ] CVE-2012-5084 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084 [ 56 ] CVE-2012-5085 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085 [ 57 ] CVE-2012-5086 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086 [ 58 ] CVE-2012-5087 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087 [ 59 ] CVE-2012-5088 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5088 [ 60 ] CVE-2012-5089 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089 [ 61 ] CVE-2013-0169 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169 [ 62 ] CVE-2013-0351 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0351 [ 63 ] CVE-2013-0401 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401 [ 64 ] CVE-2013-0402 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0402 [ 65 ] CVE-2013-0409 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0409 [ 66 ] CVE-2013-0419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0419 [ 67 ] CVE-2013-0422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0422 [ 68 ] CVE-2013-0423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0423 [ 69 ] CVE-2013-0430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0430 [ 70 ] CVE-2013-0437 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0437 [ 71 ] CVE-2013-0438 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0438 [ 72 ] CVE-2013-0445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0445 [ 73 ] CVE-2013-0446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0446 [ 74 ] CVE-2013-0448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0448 [ 75 ] CVE-2013-0449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0449 [ 76 ] CVE-2013-0809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809 [ 77 ] CVE-2013-1473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1473 [ 78 ] CVE-2013-1479 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1479 [ 79 ] CVE-2013-1481 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1481 [ 80 ] CVE-2013-1484 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484 [ 81 ] CVE-2013-1485 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485 [ 82 ] CVE-2013-1486 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486 [ 83 ] CVE-2013-1487 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1487 [ 84 ] CVE-2013-1488 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488 [ 85 ] CVE-2013-1491 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1491 [ 86 ] CVE-2013-1493 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493 [ 87 ] CVE-2013-1500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500 [ 88 ] CVE-2013-1518 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518 [ 89 ] CVE-2013-1537 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537 [ 90 ] CVE-2013-1540 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1540 [ 91 ] CVE-2013-1557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557 [ 92 ] CVE-2013-1558 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1558 [ 93 ] CVE-2013-1561 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1561 [ 94 ] CVE-2013-1563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1563 [ 95 ] CVE-2013-1564 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1564 [ 96 ] CVE-2013-1569 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569 [ 97 ] CVE-2013-1571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571 [ 98 ] CVE-2013-2383 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383 [ 99 ] CVE-2013-2384 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384 [ 100 ] CVE-2013-2394 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2394 [ 101 ] CVE-2013-2400 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2400 [ 102 ] CVE-2013-2407 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407 [ 103 ] CVE-2013-2412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412 [ 104 ] CVE-2013-2414 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2414 [ 105 ] CVE-2013-2415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415 [ 106 ] CVE-2013-2416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2416 [ 107 ] CVE-2013-2417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417 [ 108 ] CVE-2013-2418 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2418 [ 109 ] CVE-2013-2419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419 [ 110 ] CVE-2013-2420 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420 [ 111 ] CVE-2013-2421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421 [ 112 ] CVE-2013-2422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422 [ 113 ] CVE-2013-2423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423 [ 114 ] CVE-2013-2424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424 [ 115 ] CVE-2013-2425 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2425 [ 116 ] CVE-2013-2426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426 [ 117 ] CVE-2013-2427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2427 [ 118 ] CVE-2013-2428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2428 [ 119 ] CVE-2013-2429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429 [ 120 ] CVE-2013-2430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430 [ 121 ] CVE-2013-2431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431 [ 122 ] CVE-2013-2432 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2432 [ 123 ] CVE-2013-2433 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2433 [ 124 ] CVE-2013-2434 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2434 [ 125 ] CVE-2013-2435 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2435 [ 126 ] CVE-2013-2436 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436 [ 127 ] CVE-2013-2437 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2437 [ 128 ] CVE-2013-2438 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2438 [ 129 ] CVE-2013-2439 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2439 [ 130 ] CVE-2013-2440 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2440 [ 131 ] CVE-2013-2442 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2442 [ 132 ] CVE-2013-2443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443 [ 133 ] CVE-2013-2444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444 [ 134 ] CVE-2013-2445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445 [ 135 ] CVE-2013-2446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446 [ 136 ] CVE-2013-2447 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447 [ 137 ] CVE-2013-2448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448 [ 138 ] CVE-2013-2449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449 [ 139 ] CVE-2013-2450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450 [ 140 ] CVE-2013-2451 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451 [ 141 ] CVE-2013-2452 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452 [ 142 ] CVE-2013-2453 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453 [ 143 ] CVE-2013-2454 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454 [ 144 ] CVE-2013-2455 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455 [ 145 ] CVE-2013-2456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456 [ 146 ] CVE-2013-2457 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457 [ 147 ] CVE-2013-2458 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458 [ 148 ] CVE-2013-2459 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459 [ 149 ] CVE-2013-2460 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460 [ 150 ] CVE-2013-2461 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461 [ 151 ] CVE-2013-2462 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2462 [ 152 ] CVE-2013-2463 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463 [ 153 ] CVE-2013-2464 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2464 [ 154 ] CVE-2013-2465 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465 [ 155 ] CVE-2013-2466 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2466 [ 156 ] CVE-2013-2467 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2467 [ 157 ] CVE-2013-2468 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2468 [ 158 ] CVE-2013-2469 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469 [ 159 ] CVE-2013-2470 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470 [ 160 ] CVE-2013-2471 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471 [ 161 ] CVE-2013-2472 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472 [ 162 ] CVE-2013-2473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473 [ 163 ] CVE-2013-3743 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3743 [ 164 ] CVE-2013-3744 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3744 [ 165 ] CVE-2013-3829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829 [ 166 ] CVE-2013-5772 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772 [ 167 ] CVE-2013-5774 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774 [ 168 ] CVE-2013-5775 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5775 [ 169 ] CVE-2013-5776 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5776 [ 170 ] CVE-2013-5777 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5777 [ 171 ] CVE-2013-5778 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778 [ 172 ] CVE-2013-5780 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780 [ 173 ] CVE-2013-5782 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782 [ 174 ] CVE-2013-5783 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783 [ 175 ] CVE-2013-5784 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784 [ 176 ] CVE-2013-5787 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5787 [ 177 ] CVE-2013-5788 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5788 [ 178 ] CVE-2013-5789 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5789 [ 179 ] CVE-2013-5790 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790 [ 180 ] CVE-2013-5797 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797 [ 181 ] CVE-2013-5800 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800 [ 182 ] CVE-2013-5801 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5801 [ 183 ] CVE-2013-5802 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802 [ 184 ] CVE-2013-5803 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803 [ 185 ] CVE-2013-5804 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804 [ 186 ] CVE-2013-5805 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805 [ 187 ] CVE-2013-5806 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806 [ 188 ] CVE-2013-5809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809 [ 189 ] CVE-2013-5810 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5810 [ 190 ] CVE-2013-5812 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5812 [ 191 ] CVE-2013-5814 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814 [ 192 ] CVE-2013-5817 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817 [ 193 ] CVE-2013-5818 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5818 [ 194 ] CVE-2013-5819 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5819 [ 195 ] CVE-2013-5820 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820 [ 196 ] CVE-2013-5823 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823 [ 197 ] CVE-2013-5824 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5824 [ 198 ] CVE-2013-5825 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825 [ 199 ] CVE-2013-5829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829 [ 200 ] CVE-2013-5830 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830 [ 201 ] CVE-2013-5831 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5831 [ 202 ] CVE-2013-5832 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5832 [ 203 ] CVE-2013-5838 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5838 [ 204 ] CVE-2013-5840 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840 [ 205 ] CVE-2013-5842 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842 [ 206 ] CVE-2013-5843 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5843 [ 207 ] CVE-2013-5844 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5844 [ 208 ] CVE-2013-5846 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5846 [ 209 ] CVE-2013-5848 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5848 [ 210 ] CVE-2013-5849 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849 [ 211 ] CVE-2013-5850 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850 [ 212 ] CVE-2013-5851 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851 [ 213 ] CVE-2013-5852 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5852 [ 214 ] CVE-2013-5854 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5854 [ 215 ] CVE-2013-5870 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5870 [ 216 ] CVE-2013-5878 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5878 [ 217 ] CVE-2013-5887 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5887 [ 218 ] CVE-2013-5888 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5888 [ 219 ] CVE-2013-5889 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5889 [ 220 ] CVE-2013-5893 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5893 [ 221 ] CVE-2013-5895 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5895 [ 222 ] CVE-2013-5896 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5896 [ 223 ] CVE-2013-5898 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5898 [ 224 ] CVE-2013-5899 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5899 [ 225 ] CVE-2013-5902 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5902 [ 226 ] CVE-2013-5904 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5904 [ 227 ] CVE-2013-5905 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5905 [ 228 ] CVE-2013-5906 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5906 [ 229 ] CVE-2013-5907 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5907 [ 230 ] CVE-2013-5910 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5910 [ 231 ] CVE-2014-0368 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0368 [ 232 ] CVE-2014-0373 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0373 [ 233 ] CVE-2014-0375 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0375 [ 234 ] CVE-2014-0376 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0376 [ 235 ] CVE-2014-0382 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0382 [ 236 ] CVE-2014-0385 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0385 [ 237 ] CVE-2014-0387 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0387 [ 238 ] CVE-2014-0403 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0403 [ 239 ] CVE-2014-0408 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0408 [ 240 ] CVE-2014-0410 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0410 [ 241 ] CVE-2014-0411 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0411 [ 242 ] CVE-2014-0415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0415 [ 243 ] CVE-2014-0416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0416 [ 244 ] CVE-2014-0417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0417 [ 245 ] CVE-2014-0418 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0418 [ 246 ] CVE-2014-0422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0422 [ 247 ] CVE-2014-0423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0423 [ 248 ] CVE-2014-0424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0424 [ 249 ] CVE-2014-0428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0428 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201401-30.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . The verification of md5 checksums and GPG signatures is performed automatically for you. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/en/support/security/advisories/ If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iD8DBQFRh65bmqjQ0CJFipgRAqwjAJwJ3EJeMQD/k2+PhJKSlr4iSF87LACgkgaV khdurS1ieNR2RbbbTeL+aP8= =qNFz -----END PGP SIGNATURE----- . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Important: java-1.6.0-openjdk security update Advisory ID: RHSA-2013:0770-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2013-0770.html Issue date: 2013-04-24 CVE Names: CVE-2013-0401 CVE-2013-1488 CVE-2013-1518 CVE-2013-1537 CVE-2013-1557 CVE-2013-1558 CVE-2013-1569 CVE-2013-2383 CVE-2013-2384 CVE-2013-2415 CVE-2013-2417 CVE-2013-2419 CVE-2013-2420 CVE-2013-2421 CVE-2013-2422 CVE-2013-2424 CVE-2013-2426 CVE-2013-2429 CVE-2013-2430 CVE-2013-2431 ===================================================================== 1. Summary: Updated java-1.6.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. Multiple flaws were discovered in the font layout engine in the 2D component. An untrusted Java application or applet could possibly use these flaws to trigger Java Virtual Machine memory corruption. (CVE-2013-1569, CVE-2013-2383, CVE-2013-2384) Multiple improper permission check issues were discovered in the Beans, Libraries, JAXP, and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. (CVE-2013-1558, CVE-2013-2422, CVE-2013-1518, CVE-2013-1557) The previous default value of the java.rmi.server.useCodebaseOnly property permitted the RMI implementation to automatically load classes from remotely specified locations. An attacker able to connect to an application using RMI could use this flaw to make the application execute arbitrary code. (CVE-2013-1537) Note: The fix for CVE-2013-1537 changes the default value of the property to true, restricting class loading to the local CLASSPATH and locations specified in the java.rmi.server.codebase property. Refer to Red Hat Bugzilla bug 952387 for additional details. The 2D component did not properly process certain images. An untrusted Java application or applet could possibly use this flaw to trigger Java Virtual Machine memory corruption. (CVE-2013-2420) It was discovered that the Hotspot component did not properly handle certain intrinsic frames, and did not correctly perform MethodHandle lookups. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. (CVE-2013-2431, CVE-2013-2421) It was discovered that JPEGImageReader and JPEGImageWriter in the ImageIO component did not protect against modification of their state while performing certain native code operations. An untrusted Java application or applet could possibly use these flaws to trigger Java Virtual Machine memory corruption. (CVE-2013-2429, CVE-2013-2430) The JDBC driver manager could incorrectly call the toString() method in JDBC drivers, and the ConcurrentHashMap class could incorrectly call the defaultReadObject() method. An untrusted Java application or applet could possibly use these flaws to bypass Java sandbox restrictions. (CVE-2013-1488, CVE-2013-2426) The sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader. An untrusted Java application or applet could possibly use this flaw to bypass certain Java sandbox restrictions. (CVE-2013-0401) Flaws were discovered in the Network component's InetAddress serialization, and the 2D component's font handling. An untrusted Java application or applet could possibly use these flaws to crash the Java Virtual Machine. (CVE-2013-2417, CVE-2013-2419) The MBeanInstantiator class implementation in the OpenJDK JMX component did not properly check class access before creating new instances. An untrusted Java application or applet could use this flaw to create instances of non-public classes. (CVE-2013-2424) It was discovered that JAX-WS could possibly create temporary files with insecure permissions. A local attacker could use this flaw to access temporary files created by an application using JAX-WS. (CVE-2013-2415) This erratum also upgrades the OpenJDK package to IcedTea6 1.11.10. Refer to the NEWS file, linked to in the References, for further information. All users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 920245 - CVE-2013-0401 OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305) 920247 - CVE-2013-1488 OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814) 952387 - CVE-2013-1537 OpenJDK: remote code loading enabled by default (RMI, 8001040) 952389 - CVE-2013-2415 OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542) 952509 - CVE-2013-2424 OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435) 952521 - CVE-2013-2429 OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918) 952524 - CVE-2013-2430 OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667) 952638 - CVE-2013-2420 OpenJDK: image processing vulnerability (2D, 8007617) 952640 - CVE-2013-1558 OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507) 952642 - CVE-2013-2422 OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857) 952645 - CVE-2013-2431 OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336) 952646 - CVE-2013-1518 OpenJDK: JAXP missing security restrictions (JAXP, 6657673) 952648 - CVE-2013-1557 OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329) 952649 - CVE-2013-2421 OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699) 952653 - CVE-2013-2426 OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063) 952656 - CVE-2013-2419 OpenJDK: font processing errors (2D, 8001031) 952657 - CVE-2013-2417 OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724) 952708 - CVE-2013-2383 OpenJDK: font layout and glyph table errors (2D, 8004986) 952709 - CVE-2013-2384 OpenJDK: font layout and glyph table errors (2D, 8004987) 952711 - CVE-2013-1569 OpenJDK: font layout and glyph table errors (2D, 8004994) 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.40.1.11.11.el5_9.src.rpm i386: java-1.6.0-openjdk-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-src-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm x86_64: java-1.6.0-openjdk-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.40.1.11.11.el5_9.src.rpm i386: java-1.6.0-openjdk-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm java-1.6.0-openjdk-src-1.6.0.0-1.40.1.11.11.el5_9.i386.rpm x86_64: java-1.6.0-openjdk-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.40.1.11.11.el5_9.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.src.rpm i386: java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm x86_64: java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.src.rpm i386: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-src-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.src.rpm x86_64: java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.src.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.src.rpm i386: java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm x86_64: java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.src.rpm i386: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-src-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.src.rpm i386: java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm x86_64: java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.61.1.11.11.el6_4.src.rpm i386: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm java-1.6.0-openjdk-src-1.6.0.0-1.61.1.11.11.el6_4.i686.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.61.1.11.11.el6_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://www.redhat.com/security/data/cve/CVE-2013-0401.html https://www.redhat.com/security/data/cve/CVE-2013-1488.html https://www.redhat.com/security/data/cve/CVE-2013-1518.html https://www.redhat.com/security/data/cve/CVE-2013-1537.html https://www.redhat.com/security/data/cve/CVE-2013-1557.html https://www.redhat.com/security/data/cve/CVE-2013-1558.html https://www.redhat.com/security/data/cve/CVE-2013-1569.html https://www.redhat.com/security/data/cve/CVE-2013-2383.html https://www.redhat.com/security/data/cve/CVE-2013-2384.html https://www.redhat.com/security/data/cve/CVE-2013-2415.html https://www.redhat.com/security/data/cve/CVE-2013-2417.html https://www.redhat.com/security/data/cve/CVE-2013-2419.html https://www.redhat.com/security/data/cve/CVE-2013-2420.html https://www.redhat.com/security/data/cve/CVE-2013-2421.html https://www.redhat.com/security/data/cve/CVE-2013-2422.html https://www.redhat.com/security/data/cve/CVE-2013-2424.html https://www.redhat.com/security/data/cve/CVE-2013-2426.html https://www.redhat.com/security/data/cve/CVE-2013-2429.html https://www.redhat.com/security/data/cve/CVE-2013-2430.html https://www.redhat.com/security/data/cve/CVE-2013-2431.html https://access.redhat.com/security/updates/classification/#important http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.10/NEWS 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFReB4YXlSAg2UNWIIRApIkAJ9/Kk9e0UPaBMyunYAZ5ZL0yGNPZQCdFwLB R1NB2qcpqvapX4RyyM2OH0E= =rAdI -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 2.61

sources: NVD: CVE-2013-2417 // JVNDB: JVNDB-2013-002366 // BID: 59187 // VULMON: CVE-2013-2417 // PACKETSTORM: 121395 // PACKETSTORM: 121321 // PACKETSTORM: 124943 // PACKETSTORM: 121538 // PACKETSTORM: 121630 // PACKETSTORM: 121405 // PACKETSTORM: 121555

AFFECTED PRODUCTS

vendor:	oracle	model:	jre	scope:	eq	version:	1.5.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.5.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	eq	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.5.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.7.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.7.0	Trust: 1.0
vendor:	oracle	model:	jre	scope:	eq	version:	1.7.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	eq	version:	1.7.0	Trust: 1.0
vendor:	oracle	model:	jre	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.6.0	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.5.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jre 1.6.0 03	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 17	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 8	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 30	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 32	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.5.0 39	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 15	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 17	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 01	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 18	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 35	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 16	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 22	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 05	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 28	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 14	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 21	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 32	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 38	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 43	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 07	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 35	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 31	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 18	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 06	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 10	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 18	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 05	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 03	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 17	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 39	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 2	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 10	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 8	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 2	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 12	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 14	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 12	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 04	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jre 1.5.0 36	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 10	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 04	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 35	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.5.0 41	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 32	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.5.0 36	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.5.0 38	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 37	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.5.0 38	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 15	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 30	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 16	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 04	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 12	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 33	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 7	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.7	Trust: 0.9
vendor:	sun	model:	jre 03	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 02	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 01	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 4	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 28	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 9	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 06	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 19	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 9	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 38	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 22	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 07	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 43	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 29	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 28	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.5.0 39	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 35	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 17	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 14	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 13	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 02	scope:	eq	version:	1.5	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 7	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 32	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 02	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 10	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 28	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 05	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 4	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 01	scope:	eq	version:	1.5	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 30	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 33	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 21	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 24	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 06	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 22	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 11	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 18	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 10	scope:	eq	version:	1.6	Trust: 0.9
vendor:	oracle	model:	jdk	scope:	eq	version:	1.7	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 22	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 24	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 29	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 17	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 31	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 30	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 15	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 02	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jdk 13	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk .0 05	scope:	eq	version:	1.5	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 39	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 0 10	scope:	eq	version:	1.5	Trust: 0.9
vendor:	sun	model:	jre 1.5.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.5.0 24	scope:	-	version:	-	Trust: 0.9
vendor:	apple	model:	mac os x	scope:	eq	version:	v10.6.8	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	v10.7 and later	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	v10.8 and later	Trust: 0.8
vendor:	apple	model:	mac os x server	scope:	eq	version:	v10.6.8	Trust: 0.8
vendor:	apple	model:	mac os x server	scope:	eq	version:	v10.7 and later	Trust: 0.8
vendor:	oracle	model:	jdk	scope:	lte	version:	5.0 update 41	Trust: 0.8
vendor:	oracle	model:	jdk	scope:	lte	version:	6 update 43	Trust: 0.8
vendor:	oracle	model:	jdk	scope:	lte	version:	7 update 17	Trust: 0.8
vendor:	oracle	model:	jre	scope:	lte	version:	5.0 update 41	Trust: 0.8
vendor:	oracle	model:	jre	scope:	lte	version:	6 update 43	Trust: 0.8
vendor:	oracle	model:	jre	scope:	lte	version:	7 update 17	Trust: 0.8
vendor:	sun microsystems	model:	jdk	scope:	lte	version:	5.0 update 33	Trust: 0.8
vendor:	sun microsystems	model:	jdk	scope:	lte	version:	6 update 21	Trust: 0.8
vendor:	sun microsystems	model:	jre	scope:	lte	version:	5.0 update 33	Trust: 0.8
vendor:	sun microsystems	model:	jre	scope:	lte	version:	6 update 21	Trust: 0.8
vendor:	hitachi	model:	cosminexus application server enterprise	scope:	eq	version:	version 6	Trust: 0.8
vendor:	hitachi	model:	cosminexus application server standard	scope:	eq	version:	version 6	Trust: 0.8
vendor:	hitachi	model:	cosminexus application server version 5	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	cosminexus client	scope:	eq	version:	version 6	Trust: 0.8
vendor:	hitachi	model:	cosminexus developer light version 6	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	cosminexus developer professional version 6	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	cosminexus developer standard version 6	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	cosminexus developer version 5	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	cosminexus developer's kit for java	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	cosminexus primary server	scope:	eq	version:	base	Trust: 0.8
vendor:	hitachi	model:	cosminexus server - standard edition version 4	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	cosminexus server - web edition version 4	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	- standard edition version 4	Trust: 0.8
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	- web edition version 4	Trust: 0.8
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	version 5	Trust: 0.8
vendor:	hitachi	model:	ucosminexus application server	scope:	eq	version:	-r	Trust: 0.8
vendor:	hitachi	model:	ucosminexus application server	scope:	eq	version:	express	Trust: 0.8
vendor:	hitachi	model:	ucosminexus application server	scope:	eq	version:	light	Trust: 0.8
vendor:	hitachi	model:	ucosminexus application server	scope:	eq	version:	standard-r	Trust: 0.8
vendor:	hitachi	model:	ucosminexus application server enterprise	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	ucosminexus application server smart edition	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	ucosminexus application server standard	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	ucosminexus client	scope:	eq	version:	none	Trust: 0.8
vendor:	hitachi	model:	ucosminexus client	scope:	eq	version:	for plug-in	Trust: 0.8
vendor:	hitachi	model:	ucosminexus developer	scope:	eq	version:	01	Trust: 0.8
vendor:	hitachi	model:	ucosminexus developer	scope:	eq	version:	professional	Trust: 0.8
vendor:	hitachi	model:	ucosminexus developer	scope:	eq	version:	professional for plug-in	Trust: 0.8
vendor:	hitachi	model:	ucosminexus developer light	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	ucosminexus developer standard	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	ucosminexus operator	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	ucosminexus primary server	scope:	eq	version:	base	Trust: 0.8
vendor:	hitachi	model:	ucosminexus server	scope:	eq	version:	standard-r	Trust: 0.8
vendor:	hitachi	model:	ucosminexus service architect	scope:	-	version:	-	Trust: 0.8
vendor:	hitachi	model:	ucosminexus service platform	scope:	eq	version:	none	Trust: 0.8
vendor:	hitachi	model:	ucosminexus service platform	scope:	eq	version:	- messaging	Trust: 0.8
vendor:	sun	model:	jdk 1.5.0.0 11	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.5.0.0 09	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 11-b03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0 12	scope:	-	version:	-	Trust: 0.6
vendor:	oracle	model:	jdk 1.7.0 17	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk .0 04	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 01-b06	scope:	eq	version:	1.6	Trust: 0.6
vendor:	oracle	model:	jdk 1.5.0 41	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk .0 03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 08	scope:	-	version:	-	Trust: 0.6
vendor:	oracle	model:	jre 1.7.0 12	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 09	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.5.0.0 07	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.6.0 2	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.6.0 01	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 07-b03	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jdk 06	scope:	eq	version:	1.5	Trust: 0.6
vendor:	sun	model:	jre 1.5.0.0 08	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.6.0 20	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.5.0.0 12	scope:	-	version:	-	Trust: 0.6
vendor:	hitachi	model:	cosminexus developer	scope:	eq	version:	5.0	Trust: 0.3
vendor:	ubuntu	model:	linux	scope:	eq	version:	11.10	Trust: 0.3
vendor:	avaya	model:	one-x client enablement service sp2	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux server	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	network satellite (for rhel	scope:	eq	version:	6)5.5	Trust: 0.3
vendor:	schneider electric	model:	trio tview software	scope:	eq	version:	3.27.0	Trust: 0.3
vendor:	avaya	model:	cms r15	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	intelligent operations center	scope:	eq	version:	1.5.0.2	Trust: 0.3
vendor:	avaya	model:	one-x client enablement service sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.3	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for software	scope:	eq	version:	5.1.1.3	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7	Trust: 0.3
vendor:	sun	model:	jdk 01	scope:	eq	version:	1.6	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management essentials	scope:	eq	version:	7.1	Trust: 0.3
vendor:	avaya	model:	cms r16.3	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.11	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration virtual applianc	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	6	Trust: 0.3
vendor:	schneider electric	model:	trio tview software	scope:	ne	version:	3.29.0	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager	scope:	eq	version:	7.2.1	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server enterprise	scope:	eq	version:	02-00	Trust: 0.3
vendor:	ibm	model:	virtualization engine ts7700	scope:	ne	version:	8.31.0.89	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8.1	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server standard	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	one-x client enablement services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.3	Trust: 0.3
vendor:	hitachi	model:	cosminexus server web edition	scope:	eq	version:	4	Trust: 0.3
vendor:	suse	model:	linux enterprise software development kit sp3	scope:	eq	version:	11	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server express	scope:	eq	version:	09-70	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration studio	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	lotus notes fix pack	scope:	ne	version:	8.5.35	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.1.0.1	Trust: 0.3
vendor:	ibm	model:	lotus domino fix pack	scope:	ne	version:	8.5.35	Trust: 0.3
vendor:	avaya	model:	aura system platform sp2	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.6	Trust: 0.3
vendor:	redhat	model:	network satellite (for rhel	scope:	eq	version:	5)5.5	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.2	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.6	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	5.2	Trust: 0.3
vendor:	ubuntu	model:	linux amd64	scope:	eq	version:	12.10	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.1.0	Trust: 0.3
vendor:	ibm	model:	intelligent operations center	scope:	eq	version:	1.5.0.1	Trust: 0.3
vendor:	mandriva	model:	business server	scope:	eq	version:	1	Trust: 0.3
vendor:	ibm	model:	tivoli endpoint manager for remote control	scope:	eq	version:	8.2.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.3	Trust: 0.3
vendor:	hitachi	model:	ucosminexus operator	scope:	eq	version:	0	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp2	scope:	eq	version:	11	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1.2	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1.5	Trust: 0.3
vendor:	ubuntu	model:	linux i386	scope:	eq	version:	12.10	Trust: 0.3
vendor:	avaya	model:	aura application server sip core	scope:	eq	version:	53002.0	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.3.0.3	Trust: 0.3
vendor:	avaya	model:	ip office application server	scope:	eq	version:	8.0	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	avaya	model:	one-x client enablement service	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.2	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration physical applian	scope:	eq	version:	6.3	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2.1	Trust: 0.3
vendor:	avaya	model:	one-x client enablement service sp3	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.2.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer light	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.4	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for multiplatforms	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for integrated operations management	scope:	eq	version:	2.1	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.0	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.4	Trust: 0.3
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	4.0	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.5	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	8.0	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	ibm	model:	websphere operational decision management	scope:	eq	version:	7.5.0.0	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	6.2	Trust: 0.3
vendor:	ibm	model:	rational host on-demand	scope:	eq	version:	11.0.7	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.3	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	7	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.3	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	ne	version:	7.2.1.5	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer	scope:	eq	version:	010	Trust: 0.3
vendor:	redhat	model:	enterprise linux supplementary server	scope:	eq	version:	5	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.0.1	Trust: 0.3
vendor:	ibm	model:	rational host on-demand	scope:	ne	version:	11.0.8	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service architect	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	voice portal sp1	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 11	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration live saas offeri	scope:	eq	version:	6.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.2	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer light	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	smart analytics system	scope:	eq	version:	56009.7	Trust: 0.3
vendor:	hitachi	model:	cosminexus server standard edition	scope:	eq	version:	4	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2.4	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	9.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation	scope:	eq	version:	6	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0.0 04	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop client	scope:	eq	version:	5	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management essentials	scope:	eq	version:	6.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2.3	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services sp	scope:	eq	version:	6.16.1.0.9.8	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	5.2	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.4	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.2	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0.0 06	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.5	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.3	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.2.4.0.15	Trust: 0.3
vendor:	avaya	model:	one-x client enablement service sp2	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0	Trust: 0.3
vendor:	ibm	model:	websphere ilog jrules	scope:	eq	version:	7.1	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server light	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	hitachi	model:	cosminexus application server standard	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.2.0.1	Trust: 0.3
vendor:	avaya	model:	cms r17	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.1.4	Trust: 0.3
vendor:	wordpress	model:	uploader	scope:	eq	version:	1.0	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration virtual applianc	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer professional	scope:	eq	version:	6	Trust: 0.3
vendor:	s u s e	model:	opensuse	scope:	eq	version:	12.2	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2	Trust: 0.3
vendor:	sun	model:	jre 1.5.0 09	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	one-x client enablement services	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	suse	model:	linux enterprise server for vmware sp3	scope:	eq	version:	11	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp3	scope:	eq	version:	11	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.1.0.2	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.4	Trust: 0.3
vendor:	avaya	model:	one-x client enablement services	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ubuntu	model:	linux lts	scope:	eq	version:	12.04	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.5	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.11	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	tivoli remote control	scope:	eq	version:	5.1.2	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration virtual applianc	scope:	eq	version:	6.3	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration physical applian	scope:	eq	version:	6.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6	Trust: 0.3
vendor:	sun	model:	jre beta	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	suse	model:	linux enterprise server for vmware sp2	scope:	eq	version:	11	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.2.5.0.15	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.1.1	Trust: 0.3
vendor:	ibm	model:	tivoli system automation application manager	scope:	eq	version:	3.2	Trust: 0.3
vendor:	sun	model:	jdk	scope:	eq	version:	1.5	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system manager sp2	scope:	eq	version:	6.1	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer standard	scope:	eq	version:	6	Trust: 0.3
vendor:	mandrakesoft	model:	enterprise server x86 64	scope:	eq	version:	5	Trust: 0.3
vendor:	sun	model:	jdk 07	scope:	eq	version:	1.5	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.3	Trust: 0.3
vendor:	avaya	model:	aura session manager sp2	scope:	eq	version:	5.2	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	ip office server edition	scope:	eq	version:	8.1	Trust: 0.3
vendor:	hitachi	model:	cosminexus application server enterprise	scope:	eq	version:	6	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8.2	Trust: 0.3
vendor:	hitachi	model:	cosminexus application server	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	one-x client enablement services	scope:	eq	version:	6.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.3	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer professional for plug-in	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	1.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node optional	scope:	eq	version:	6	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.6	Trust: 0.3
vendor:	ibm	model:	intelligent operations center	scope:	eq	version:	1.5	Trust: 0.3
vendor:	redhat	model:	enterprise linux server supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.3.8.3	Trust: 0.3
vendor:	ibm	model:	tivoli endpoint manager for remote control	scope:	eq	version:	9.0	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	5	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.2.3	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for integrated operations management	scope:	ne	version:	2.1.1.4	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.3	Trust: 0.3
vendor:	mandrakesoft	model:	enterprise server	scope:	eq	version:	5	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.3.9.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.3	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 11-b03	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.2	Trust: 0.3
vendor:	ibm	model:	virtualization engine ts7700	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for multiplatforms	scope:	eq	version:	3.1	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.5	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.5	Trust: 0.3
vendor:	mandriva	model:	business server	scope:	eq	version:	1x8664	Trust: 0.3
vendor:	ibm	model:	websphere message broker	scope:	eq	version:	7.0.0	Trust: 0.3
vendor:	ibm	model:	tivoli system automation application manager	scope:	eq	version:	3.1	Trust: 0.3
vendor:	avaya	model:	communication server 1000m	scope:	eq	version:	6.0	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.3	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation optional	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.2	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration live saas offeri	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	communication server 1000m signaling server	scope:	eq	version:	6.0	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	avaya	model:	communication server 1000e	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	operational decision manager	scope:	eq	version:	8.5	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.2.2	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.2.1	Trust: 0.3
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	5	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.3	Trust: 0.3
vendor:	ibm	model:	websphere message broker	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.1.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.1	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0.2	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2	Trust: 0.3
vendor:	ibm	model:	maximo asset management essentials	scope:	eq	version:	7.5	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.6	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.7	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	7.0	Trust: 0.3
vendor:	ibm	model:	websphere message broker	scope:	eq	version:	8.0	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	1.1	Trust: 0.3
vendor:	hp	model:	java jre/jdk for hp-ux	scope:	eq	version:	1.6.0.18	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.2	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer professional	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura experience portal sp2	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer standard	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.8	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	9.0	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.4	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.3	Trust: 0.3
vendor:	avaya	model:	aura presence services sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system manager sp1	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	tivoli system automation application manager	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.8	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8.3	Trust: 0.3
vendor:	avaya	model:	aura system manager sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.31	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.1	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.2	Trust: 0.3
vendor:	hitachi	model:	cosminexus client	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	communication server 1000m signaling server	scope:	eq	version:	7.0	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.4	Trust: 0.3
vendor:	avaya	model:	communication server 1000e	scope:	eq	version:	7.0	Trust: 0.3
vendor:	sun	model:	jre 07	scope:	eq	version:	1.5	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.13	Trust: 0.3
vendor:	sun	model:	jdk 0 09	scope:	eq	version:	1.5	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.5	Trust: 0.3
vendor:	sun	model:	jre 1.5.0 08	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1.4	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration studio	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.7	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2.2	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server smart edition	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura session manager sp2	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura conferencing	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.2.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.7	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for multiplatforms	scope:	eq	version:	3.2	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	centos	model:	centos	scope:	eq	version:	5	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	ip office application server	scope:	eq	version:	8.1	Trust: 0.3
vendor:	avaya	model:	messaging application server	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	suse	model:	linux enterprise java sp2	scope:	eq	version:	11	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux server optional	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1.2	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration physical applian	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	websphere cast iron cloud integration studio	scope:	eq	version:	6.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1.3	Trust: 0.3
vendor:	avaya	model:	aura conferencing sp1 standard	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ubuntu	model:	linux lts	scope:	eq	version:	10.04	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.2	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.0.1	Trust: 0.3
vendor:	avaya	model:	one-x client enablement service sp1	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	6.2	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.8	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.4	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.5	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.2.1.0.9	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for software	scope:	eq	version:	5.1	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	7	Trust: 0.3
vendor:	avaya	model:	aura application server sip core	scope:	eq	version:	53003.0	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.4	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0 07-b03	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	9.0	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.1	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.1	Trust: 0.3
vendor:	avaya	model:	aura experience portal sp1	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.5	Trust: 0.3
vendor:	avaya	model:	one-x client enablement services	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	ibm	model:	operational decision manager	scope:	eq	version:	8.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000e signaling server	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.1.2	Trust: 0.3
vendor:	avaya	model:	cms r16	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system manager sp3	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	aura system platform sp3	scope:	eq	version:	6.0	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service platform	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.5	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1	Trust: 0.3
vendor:	sun	model:	jdk 1.6.0 01-b06	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.2	Trust: 0.3
vendor:	avaya	model:	aura conferencing	scope:	eq	version:	7.0	Trust: 0.3
vendor:	hitachi	model:	ucosminexus client	scope:	eq	version:	0	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	aura system platform sp1	scope:	eq	version:	6.2	Trust: 0.3
vendor:	centos	model:	centos	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	tivoli system automation application manager	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop optional	scope:	eq	version:	6	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	5.1	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager	scope:	eq	version:	5.1.1.1	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.3.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary client	scope:	eq	version:	5	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server standard-r	scope:	eq	version:	0	Trust: 0.3
vendor:	gentoo	model:	linux	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2	Trust: 0.3
vendor:	sun	model:	jdk 1.5.0.0 03	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	5.2.4	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura system platform	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	avaya	model:	communication server 1000e signaling server	scope:	eq	version:	7.5	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.1.0.9.8	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux server	scope:	eq	version:	5	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1.3	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7	Trust: 0.3
vendor:	suse	model:	linux enterprise java sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.5	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.3	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.2.0.2	Trust: 0.3
vendor:	ibm	model:	rational host on-demand	scope:	eq	version:	11.0	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager	scope:	eq	version:	7.1.1	Trust: 0.3
vendor:	suse	model:	linux enterprise desktop sp2	scope:	eq	version:	11	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager	scope:	eq	version:	7.1	Trust: 0.3
vendor:	sun	model:	jdk 0 03	scope:	eq	version:	1.5	Trust: 0.3
vendor:	suse	model:	linux enterprise software development kit sp2	scope:	eq	version:	11	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.1	Trust: 0.3
vendor:	avaya	model:	communication server 1000m	scope:	eq	version:	7.5	Trust: 0.3
vendor:	avaya	model:	communication server 1000e signaling server	scope:	eq	version:	7.0	Trust: 0.3
vendor:	avaya	model:	aura communication manager utility services	scope:	eq	version:	6.2	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.12	Trust: 0.3
vendor:	suse	model:	linux enterprise desktop sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	avaya	model:	aura conferencing standard	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hp	model:	java jre/jdk for hp-ux	scope:	ne	version:	1.6.0.19.00	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager	scope:	eq	version:	7.2	Trust: 0.3
vendor:	avaya	model:	communication server 1000m signaling server	scope:	eq	version:	7.5	Trust: 0.3
vendor:	avaya	model:	communication server 1000e	scope:	eq	version:	7.5	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for multiplatforms	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.2	Trust: 0.3
vendor:	avaya	model:	communication server 1000m	scope:	eq	version:	7.0	Trust: 0.3

sources: BID: 59187 // JVNDB: JVNDB-2013-002366 // NVD: CVE-2013-2417

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-2417
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2013-2417
value:	MEDIUM
Trust: 0.8
VULMON:	CVE-2013-2417
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2013-2417
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9

sources: VULMON: CVE-2013-2417 // JVNDB: JVNDB-2013-002366 // NVD: CVE-2013-2417

PROBLEMTYPE DATA

problemtype:

NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2013-2417

THREAT TYPE

network

Trust: 0.3

sources: BID: 59187

TYPE

Unknown

Trust: 0.3

sources: BID: 59187

CONFIGURATIONS

sources: JVNDB: JVNDB-2013-002366

PATCH

title:	APPLE-SA-2013-04-16-2	url:	http://lists.apple.com/archives/security-announce/2013/Apr/msg00001.html	Trust: 0.8
title:	HT5734	url:	http://support.apple.com/kb/HT5734	Trust: 0.8
title:	HT5734	url:	http://support.apple.com/kb/HT5734?viewlocale=ja_JP	Trust: 0.8
title:	HS13-010	url:	http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS13-010/index.html	Trust: 0.8
title:	HPSBUX02889 SSRT101252	url:	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03809278	Trust: 0.8
title:	HPSBUX02922 SSRT101305	url:	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880	Trust: 0.8
title:	SUSE-SU-2013:0814	url:	http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html	Trust: 0.8
title:	SUSE-SU-2013:0835	url:	http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00013.html	Trust: 0.8
title:	SUSE-SU-2013:0934	url:	http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00007.html	Trust: 0.8
title:	SUSE-SU-2013:0871	url:	http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00001.html	Trust: 0.8
title:	openSUSE-SU-2013:0777	url:	http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html	Trust: 0.8
title:	openSUSE-SU-2013:0964	url:	http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html	Trust: 0.8
title:	jdk7u/jdk7u-dev/jdk / changeset	url:	http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/7ca8a40795d8	Trust: 0.8
title:	Oracle Java SE Critical Patch Update Advisory - April 2013	url:	http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html	Trust: 0.8
title:	Text Form of Oracle Java SE Critical Patch Update - April 2013 Risk Matrices	url:	http://www.oracle.com/technetwork/topics/security/javacpuapr2013verbose-1928687.html	Trust: 0.8
title:	Bug 952657	url:	https://bugzilla.redhat.com/show_bug.cgi?id=952657	Trust: 0.8
title:	RHSA-2013:0757	url:	http://rhn.redhat.com/errata/RHSA-2013-0757.html	Trust: 0.8
title:	RHSA-2013:0758	url:	http://rhn.redhat.com/errata/RHSA-2013-0758.html	Trust: 0.8
title:	RHSA-2013:1455	url:	http://rhn.redhat.com/errata/RHSA-2013-1455.html	Trust: 0.8
title:	RHSA-2013:1456	url:	http://rhn.redhat.com/errata/RHSA-2013-1456.html	Trust: 0.8
title:	RHSA-2013:0752	url:	http://rhn.redhat.com/errata/RHSA-2013-0752.html	Trust: 0.8
title:	April 2013 Critical Patch Update for Java SE Released	url:	https://blogs.oracle.com/security/entry/april_2013_critical_patch_update1	Trust: 0.8
title:	TLSA-2013-2	url:	http://www.turbolinux.co.jp/security/2013/TLSA-2013-2j.html	Trust: 0.8
title:	USN-1806-1	url:	http://www.ubuntu.com/usn/USN-1806-1/	Trust: 0.8
title:	HS13-010	url:	http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS13-010/index.html	Trust: 0.8
title:	Oracle Corporation Javaプラグインの脆弱性に関するお知らせ	url:	http://www.fmworld.net/biz/common/oracle/20130417.html	Trust: 0.8
title:	Red Hat: CVE-2013-2417	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database&qid=CVE-2013-2417	Trust: 0.1
title:	Red Hat: Important: java-1.6.0-openjdk security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20130770 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.7.0-openjdk security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20130751 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.6.0-ibm security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20130823 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.6.0-sun security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20130758 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: java-1.7.0-openjdk security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20130752 - Security Advisory	Trust: 0.1
title:	Red Hat: Critical: java-1.7.0-oracle security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20130757 - Security Advisory	Trust: 0.1
title:	Ubuntu Security Notice: openjdk-7 vulnerabilities	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-1806-1	Trust: 0.1
title:	Ubuntu Security Notice: openjdk-6 vulnerabilities	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-1819-1	Trust: 0.1
title:	Amazon Linux AMI: ALAS-2013-185	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami&qid=ALAS-2013-185	Trust: 0.1
title:	Amazon Linux AMI: ALAS-2013-183	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami&qid=ALAS-2013-183	Trust: 0.1
title:	Red Hat: Low: Red Hat Network Satellite server IBM Java Runtime security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20131456 - Security Advisory	Trust: 0.1
title:	Red Hat: Low: Red Hat Network Satellite server IBM Java Runtime security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20131455 - Security Advisory	Trust: 0.1
title:	Java-Deserialization-CVEs	url:	https://github.com/PalindromeLabs/Java-Deserialization-CVEs	Trust: 0.1

sources: VULMON: CVE-2013-2417 // JVNDB: JVNDB-2013-002366

EXTERNAL IDS

db:	NVD	id:	CVE-2013-2417	Trust: 2.9
db:	USCERT	id:	TA13-107A	Trust: 1.9
db:	BID	id:	59187	Trust: 1.4
db:	JVNDB	id:	JVNDB-2013-002366	Trust: 0.8
db:	HITACHI	id:	HS13-010	Trust: 0.3
db:	ICS CERT	id:	ICSA-17-213-02	Trust: 0.3
db:	VULMON	id:	CVE-2013-2417	Trust: 0.1
db:	PACKETSTORM	id:	121395	Trust: 0.1
db:	PACKETSTORM	id:	121321	Trust: 0.1
db:	PACKETSTORM	id:	124943	Trust: 0.1
db:	PACKETSTORM	id:	121538	Trust: 0.1
db:	PACKETSTORM	id:	121630	Trust: 0.1
db:	PACKETSTORM	id:	121405	Trust: 0.1
db:	PACKETSTORM	id:	121555	Trust: 0.1

sources: VULMON: CVE-2013-2417 // BID: 59187 // JVNDB: JVNDB-2013-002366 // PACKETSTORM: 121395 // PACKETSTORM: 121321 // PACKETSTORM: 124943 // PACKETSTORM: 121538 // PACKETSTORM: 121630 // PACKETSTORM: 121405 // PACKETSTORM: 121555 // NVD: CVE-2013-2417

REFERENCES

url:	http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/	Trust: 2.0
url:	https://wiki.mageia.org/en/support/advisories/mgasa-2013-0130	Trust: 2.0
url:	http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/	Trust: 1.9
url:	http://www.us-cert.gov/ncas/alerts/ta13-107a	Trust: 1.9
url:	https://wiki.mageia.org/en/support/advisories/mgasa-2013-0124	Trust: 1.9
url:	http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html	Trust: 1.5
url:	http://rhn.redhat.com/errata/rhsa-2013-0752.html	Trust: 1.2
url:	http://www.ubuntu.com/usn/usn-1806-1	Trust: 1.2
url:	http://www.securityfocus.com/bid/59187	Trust: 1.2
url:	https://bugzilla.redhat.com/show_bug.cgi?id=952657	Trust: 1.1
url:	http://rhn.redhat.com/errata/rhsa-2013-0758.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00013.html	Trust: 1.1
url:	http://rhn.redhat.com/errata/rhsa-2013-0757.html	Trust: 1.1
url:	http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/7ca8a40795d8	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00001.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00007.html	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=137283787217316&w=2	Trust: 1.1
url:	http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c03898880	Trust: 1.1
url:	http://rhn.redhat.com/errata/rhsa-2013-1455.html	Trust: 1.1
url:	http://rhn.redhat.com/errata/rhsa-2013-1456.html	Trust: 1.1
url:	http://lists.apple.com/archives/security-announce/2013/apr/msg00001.html	Trust: 1.1
url:	http://www.mandriva.com/security/advisories?name=mdvsa-2013:145	Trust: 1.1
url:	http://www.mandriva.com/security/advisories?name=mdvsa-2013:161	Trust: 1.1
url:	http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-april/022796.html	Trust: 1.1
url:	http://security.gentoo.org/glsa/glsa-201406-32.xml	Trust: 1.1
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19570	Trust: 1.1
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19524	Trust: 1.1
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16446	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2417	Trust: 0.9
url:	http://www.ipa.go.jp/security/ciadr/vul/20130417-jre.html	Trust: 0.8
url:	https://www.jpcert.or.jp/at/2013/at130021.txt	Trust: 0.8
url:	http://jvn.jp/cert/jvnta13-107a/index.html	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-2417	Trust: 0.8
url:	https://downloads.avaya.com/css/p8/documents/100172168	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1569	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-0401	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2422	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2420	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1558	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2383	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1557	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2384	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2430	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2429	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2419	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2426	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1537	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1488	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2417	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2415	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1518	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2431	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2421	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2436	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2423	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2424	Trust: 0.4
url:	http://www.ibm.com/developerworks/java/jdk/alerts/#oracle_april_16_2013_cpu	Trust: 0.3
url:	https://downloads.avaya.com/css/p8/documents/100172719	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21649510	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg24034690	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg24034225	Trust: 0.3
url:	https://ics-cert.us-cert.gov/advisories/icsa-17-213-02	Trust: 0.3
url:	http://prod.lists.apple.com/archives/security-announce/2013/apr/msg00001.html	Trust: 0.3
url:	https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03809278	Trust: 0.3
url:	http://alerts.hp.com/r?2.1.3kt.2zr.xg7ek.jz8iz8..t.d3wy.82bm.bw89mq%5f%5fcviafmb0	Trust: 0.3
url:	http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs13-010/index.html	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=isg400001531	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21640206	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21637512	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21640420	Trust: 0.3
url:	https://downloads.avaya.com/css/p8/documents/100172158	Trust: 0.3
url:	http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00001.html	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21633170	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21640763	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21645096	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21645100	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21643544	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=swg21649300	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21644918	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21647384	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=swg21643697	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21642358	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004513	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21649318	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21643618	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21643513	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21645425	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2426.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-1569.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2417.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2419.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-0401.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2430.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-1537.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2415.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2422.html	Trust: 0.3
url:	https://access.redhat.com/security/team/contact/	Trust: 0.3
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2383.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-1558.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-1557.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-1488.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2424.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2384.html	Trust: 0.3
url:	https://access.redhat.com/knowledge/articles/11258	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2429.html	Trust: 0.3
url:	https://access.redhat.com/security/team/key/#package	Trust: 0.3
url:	http://bugzilla.redhat.com/):	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2420.html	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-2436.html	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1518.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2421.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2431.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2423.html	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2013-2417	Trust: 0.1
url:	https://usn.ubuntu.com/1806-1/	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-7/7u21-2.3.9-0ubuntu0.12.10.1	Trust: 0.1
url:	http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.9/news	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0507	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5870	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0503	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0419	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2469	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2443	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1717	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1716	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0505	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1518	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2419	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1558	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3829	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5818	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1541	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5829	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5804	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1485	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5889	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0449	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2440	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5806	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5087	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2422	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1540	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0385	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2427	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2437	Trust: 0.1
url:	http://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0445	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0500	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5075	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2468	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3743	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0422	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0501	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2426	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5893	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3159	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3174	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5084	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5888	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1711	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0437	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1541	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2461	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0373	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0351	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1563	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5789	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5820	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0504	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1682	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2470	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0547	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5899	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2451	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5801	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5823	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0423	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2459	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5832	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5848	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0428	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2460	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1713	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0415	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5784	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1719	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1533	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2400	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1564	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3143	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5830	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0448	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5800	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0438	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5810	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5905	Trust: 0.1
url:	http://security.gentoo.org/glsa/glsa-201401-30.xml	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5904	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2456	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5803	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5831	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5086	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2452	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2383	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2447	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2423	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5778	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0422	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2445	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2450	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5780	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5073	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1493	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2446	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3744	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5854	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2394	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5069	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-5035	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0498	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1500	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5852	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5777	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0547	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5850	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0499	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2384	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0499	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1557	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0409	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1532	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2428	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2453	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0401	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5085	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2407	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2421	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4681	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2462	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0423	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2429	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5083	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0375	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2439	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5068	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2416	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3136	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0376	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5824	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3342	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5776	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5071	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1531	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0417	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0504	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1723	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0497	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5819	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0507	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1722	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5774	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5782	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5895	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2466	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1725	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5790	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5805	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0403	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5802	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0446	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1719	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5849	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-5035	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2448	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2418	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2458	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5788	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0416	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5825	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0506	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1484	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0424	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2430	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1473	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2415	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5887	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0418	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3216	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1718	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5772	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0410	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0368	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1717	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2425	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5074	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0500	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2454	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2444	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5072	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2436	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1722	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4416	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1537	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5902	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2432	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0387	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0502	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1716	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1533	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2449	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0503	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2457	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2438	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1721	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0382	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0169	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5812	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3563	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0809	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5077	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3213	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5846	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1718	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0497	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1723	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1726	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1571	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5775	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5787	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5081	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5898	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5840	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1531	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5851	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2465	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1481	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2431	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3563	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2433	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2473	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5844	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5906	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5783	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1711	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2463	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1532	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1561	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2412	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2435	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1491	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5809	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5910	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2420	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1487	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1713	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5907	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0501	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2417	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2471	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5896	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5843	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5067	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1682	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0498	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2414	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2424	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5076	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2467	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5842	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5079	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0411	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1721	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1569	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1724	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5797	Trust: 0.1
url:	http://security.gentoo.org/	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5070	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1479	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1486	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2434	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2442	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1488	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2464	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2472	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0502	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5878	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0505	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5817	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5814	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0408	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0402	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0506	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5838	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0430	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2455	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5088	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5089	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2431	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2426	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2421	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1569	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2420	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1488	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1518	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2419	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2384	Trust: 0.1
url:	http://www.mandriva.com/en/support/security/	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-0401	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2429	Trust: 0.1
url:	http://www.mandriva.com/en/support/security/advisories/	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2423	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1557	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2383	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1537	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2436	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2415	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2424	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2430	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1558	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2013-0751.html	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2422	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-1540.html	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#critical	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2435.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2394.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2416.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1491	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-0169	Trust: 0.1
url:	https://www.ibm.com/developerworks/java/jdk/alerts/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2416	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2432	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2438.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2432.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2418	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2394	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-1491.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2418.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-1563.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2433	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-0169.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2433.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2434.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2434	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1540	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2013-0822.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1563	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2440.html	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2013-0770.html	Trust: 0.1
url:	http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.10/news	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.5-0ubuntu0.10.04.1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.5-0ubuntu0.11.10.1	Trust: 0.1
url:	http://www.ubuntu.com/usn/usn-1819-1	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.5-0ubuntu0.12.04.1	Trust: 0.1

CREDITS

Oracle

Trust: 0.3

sources: BID: 59187

SOURCES

db:	VULMON	id:	CVE-2013-2417
db:	BID	id:	59187
db:	JVNDB	id:	JVNDB-2013-002366
db:	PACKETSTORM	id:	121395
db:	PACKETSTORM	id:	121321
db:	PACKETSTORM	id:	124943
db:	PACKETSTORM	id:	121538
db:	PACKETSTORM	id:	121630
db:	PACKETSTORM	id:	121405
db:	PACKETSTORM	id:	121555
db:	NVD	id:	CVE-2013-2417

LAST UPDATE DATE

2024-09-18T22:30:45.387000+00:00

SOURCES UPDATE DATE

db:	VULMON	id:	CVE-2013-2417	date:	2017-09-19T00:00:00
db:	BID	id:	59187	date:	2017-08-11T20:11:00
db:	JVNDB	id:	JVNDB-2013-002366	date:	2015-03-18T00:00:00
db:	NVD	id:	CVE-2013-2417	date:	2022-05-13T14:52:54.140

SOURCES RELEASE DATE

db:	VULMON	id:	CVE-2013-2417	date:	2013-04-17T00:00:00
db:	BID	id:	59187	date:	2013-04-16T00:00:00
db:	JVNDB	id:	JVNDB-2013-002366	date:	2013-04-22T00:00:00
db:	PACKETSTORM	id:	121395	date:	2013-04-23T20:22:00
db:	PACKETSTORM	id:	121321	date:	2013-04-18T00:00:20
db:	PACKETSTORM	id:	124943	date:	2014-01-27T18:30:13
db:	PACKETSTORM	id:	121538	date:	2013-05-06T19:22:00
db:	PACKETSTORM	id:	121630	date:	2013-05-14T20:49:18
db:	PACKETSTORM	id:	121405	date:	2013-04-24T23:46:32
db:	PACKETSTORM	id:	121555	date:	2013-05-07T20:22:00
db:	NVD	id:	CVE-2013-2417	date:	2013-04-17T18:55:06.930