CVE-2014-6591

Publication date 21 January 2015

Last updated 24 July 2024


Ubuntu priority

Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585.

Status

Package Ubuntu Release Status
icu 14.10 utopic
Fixed 52.1-6ubuntu0.2
14.04 LTS trusty
Fixed 52.1-3ubuntu0.2
12.04 LTS precise
Fixed 4.8.1.1-3ubuntu0.3
10.04 LTS lucid Ignored end of life
openjdk-6 14.10 utopic
Fixed 6b34-1.13.6-1ubuntu0.14.10.1
14.04 LTS trusty
Fixed 6b34-1.13.6-1ubuntu0.14.04.1
12.04 LTS precise
Fixed 6b34-1.13.6-1ubuntu0.12.04.1
10.04 LTS lucid
Fixed 6b34-1.13.6-1ubuntu0.10.04.1
openjdk-7 14.10 utopic
Fixed 7u75-2.5.4-1~utopic1
14.04 LTS trusty
Fixed 7u75-2.5.4-1~trusty1
12.04 LTS precise
Fixed 7u75-2.5.4-1~precise1
10.04 LTS lucid Not in release
openjdk-8 14.10 utopic
Not affected
14.04 LTS trusty Not in release
12.04 LTS precise Not in release
10.04 LTS lucid Not in release

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
icu
openjdk-7

References

Related Ubuntu Security Notices (USN)

Other references