CVE-2015-2632

Publication date 16 July 2015

Last updated 24 July 2024


Ubuntu priority

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to 2D.

Read the notes from the security team

Status

Package Ubuntu Release Status
icu 15.10 wily
Fixed 55.1-4ubuntu1
15.04 vivid
Fixed 52.1-8ubuntu0.2
14.10 utopic Ignored end of life
14.04 LTS trusty
Fixed 52.1-3ubuntu0.4
12.04 LTS precise
Fixed 4.8.1.1-3ubuntu0.6
openjdk-6 15.10 wily
Not affected
15.04 vivid
Fixed 6b36-1.13.8-0ubuntu1~15.04.1
14.10 utopic Ignored end of life
14.04 LTS trusty
Fixed 6b36-1.13.8-0ubuntu1~14.04
12.04 LTS precise
Fixed 6b36-1.13.8-0ubuntu1~12.04
openjdk-7 15.10 wily
Not affected
15.04 vivid
Fixed 7u79-2.5.6-0ubuntu1.15.04.1
14.10 utopic Ignored end of life
14.04 LTS trusty
Fixed 7u79-2.5.6-0ubuntu1.14.04.1
12.04 LTS precise
Fixed 7u79-2.5.6-0ubuntu1.12.04.1
openjdk-8 15.10 wily
Fixed 8u66-b17-1
15.04 vivid Ignored end of life
14.10 utopic Ignored end of life
14.04 LTS trusty Not in release
12.04 LTS precise Not in release

Notes


mdeslaur

as of 2015-09-01, no equivalent fix in ICU source tree

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
openjdk-8

References

Related Ubuntu Security Notices (USN)

    • 2696-1
    • OpenJDK 7 vulnerabilities
    • 30 July 2015
    • USN-2706-1
    • OpenJDK 6 vulnerabilities
    • 6 August 2015
    • USN-2696-1
    • OpenJDK 7 vulnerabilities
    • 30 July 2015
    • USN-2740-1
    • ICU vulnerabilities
    • 16 September 2015

Other references