Definition

New Search

HP-UX Running Java5 Runtime Environment (JRE) and Java Developer Kit (JDK) Remote Unauthorized Access Disclosure of Information and Other Vulnerabilities

oval:org.mitre.oval:def:19704

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier 6 Update 43 and earlier and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality integrity and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient "validation of images" in share/native/sun/awt/image/awt_ImageRep.c possibly involving offsets.