Launchpad.net

CVE 2011-3560

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality and integrity, related to JSSE.

Related bugs and status

CVE-2011-3560 (Candidate) is related to these bugs:

Bug #878684: Update icedtea-java7 to Java SE 7 Update 1

		In	Importance	Status
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-6 (Ubuntu)	Undecided	Fix Released
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-7 (Ubuntu)	Undecided	Fix Released
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-6 (Ubuntu Lucid)	High	Fix Released
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-7 (Ubuntu Lucid)	Undecided	Invalid
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-6 (Ubuntu Maverick)	High	Fix Released
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-7 (Ubuntu Maverick)	Undecided	Invalid
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-6 (Ubuntu Natty)	High	Fix Released
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-7 (Ubuntu Natty)	Undecided	Invalid
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-6 (Ubuntu Oneiric)	High	Fix Released
878684	Update icedtea-java7 to Java SE 7 Update 1	openjdk-7 (Ubuntu Oneiric)	Undecided	Fix Released

Bug #881746: Oracle (Sun) Java JRE/JDK 6: Update 26 has critical security vulnerabilities, fixed in Update 29

		In	Importance	Status
881746	Oracle (Sun) Java JRE/JDK 6: Update 26 has critical security vulnerabilities, fixed in Update 29	sun-java6 (Ubuntu)	Undecided	Won't Fix
881746	Oracle (Sun) Java JRE/JDK 6: Update 26 has critical security vulnerabilities, fixed in Update 29	sun-java6 (CentOS)	Medium	Invalid
881746	Oracle (Sun) Java JRE/JDK 6: Update 26 has critical security vulnerabilities, fixed in Update 29	sun-java6 (Debian)	Unknown	Fix Released
881746	Oracle (Sun) Java JRE/JDK 6: Update 26 has critical security vulnerabilities, fixed in Update 29	Sun Java	Undecided	Fix Released

Bug #891761: openjdk-6 6b23~pre11-0ubuntu1.11.10 breaks Raritan Dominion KVM console access

Summary				In	Importance	Status
	891761	openjdk-6 6b23~pre11-0ubuntu1.11.10 breaks Raritan Dominion KVM console access		openjdk-6 (Ubuntu)	Medium	Fix Released

Bug #925218: Crash in java.net.NetworkInterface.getNetworkInterfaces() when ifr_ifindex exceeds 255

		In	Importance	Status
925218	Crash in java.net.NetworkInterface.getNetworkInterfaces() when ifr_ifindex exceeds 255	openjdk-6 (Ubuntu)	Undecided	Fix Released
925218	Crash in java.net.NetworkInterface.getNetworkInterfaces() when ifr_ifindex exceeds 255	openjdk-7 (Ubuntu)	Undecided	Fix Released
925218	Crash in java.net.NetworkInterface.getNetworkInterfaces() when ifr_ifindex exceeds 255	openjdk-6 (Ubuntu Oneiric)	High	Fix Released
925218	Crash in java.net.NetworkInterface.getNetworkInterfaces() when ifr_ifindex exceeds 255	openjdk-7 (Ubuntu Oneiric)	Undecided	Fix Released

Bug #935296: java-atk-wrapper prevents java applications from starting

		In	Importance	Status
935296	java-atk-wrapper prevents java applications from starting	openjdk-6 (Ubuntu)	High	Fix Released
935296	java-atk-wrapper prevents java applications from starting	java-atk-wrapper (Ubuntu)	High	Fix Released
935296	java-atk-wrapper prevents java applications from starting	java-atk-wrapper (Ubuntu Precise)	High	Won't Fix
935296	java-atk-wrapper prevents java applications from starting	openjdk-6 (Ubuntu Precise)	High	Won't Fix
935296	java-atk-wrapper prevents java applications from starting	openjdk-7 (Ubuntu)	High	Fix Released
935296	java-atk-wrapper prevents java applications from starting	openjdk-7 (Ubuntu Precise)	High	Won't Fix
935296	java-atk-wrapper prevents java applications from starting	java-atk-wrapper (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.oracle.com/...
REDHAT: RHSA-2011:1384
BID: 50236
CONFIRM: http://www.ibm.com/dev...
REDHAT: RHSA-2012:0006
SECUNIA: 49198
SUSE: SUSE-SU-2012:0114
SUSE: SUSE-SU-2012:0122
OSVDB: 76507
SECTRACK: 1026215
SECUNIA: 48692
SECUNIA: 48915
SECUNIA: 48948
REDHAT: RHSA-2013:1455
UBUNTU: USN-1263-1
GENTOO: GLSA-201406-32
HP: HPSBUX02730
HP: SSRT100710
HP: HPSBMU02797
HP: HPSBUX02760
HP: HPSBUX02777
HP: SSRT100805
HP: SSRT100854
HP: SSRT100867
XF: oracle-jre-jsse-unspec...
OVAL: oval:org.mitre.oval:de...
HP: HPSBMU02799
REDHAT: RHSA-2012:0508
SUSE: SUSE-SU-2012:0602
SECUNIA: 48308