PT-2013-3248 · Ibm+6 · International Components For Unicode (Icu) Layout Engine+8

Stefan Cornelius

·

Published

2013-04-17

·

Updated

2024-06-15

·

CVE-2013-1569

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Java SE versions 7 Update 17 and earlier Java SE versions 6 Update 43 and earlier Java SE versions 5.0 Update 41 and earlier OpenJDK versions 6 and 7
Description The issue affects confidentiality, integrity, and availability via unknown vectors related to 2D, potentially involving the checking of a glyph table in the International Components for Unicode (ICU) Layout Engine.
Recommendations For Java SE versions 7 Update 17 and earlier, update to a version later than Update 17. For Java SE versions 6 Update 43 and earlier, update to a version later than Update 43. For Java SE versions 5.0 Update 41 and earlier, update to a version later than Update 41. For OpenJDK versions 6 and 7, consider applying security patches or updates to mitigate the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CESA-2013_0751
CESA-2013_0770
CVE-2013-1569
DLA-219-1
DSA-3187-1
HPSBUX02889
HPSBUX02922
OPENSUSE-SU-2024:10534-1
RHSA-2013:0751
RHSA-2013:0752
RHSA-2013:0757
RHSA-2013:0758
RHSA-2013:0770
RHSA-2013:0822
RHSA-2013:0823
RHSA-2013:0855
RHSA-2013:1455
RHSA-2013:1456
RHSA-2013_0751
RHSA-2013_0752
RHSA-2013_0757
RHSA-2013_0758
RHSA-2013_0770
RHSA-2013_0822
RHSA-2013_0823
RHSA-2013_0855
SUSE-SU-2015:0343-1
SUSE-SU-2015:0344-1
SUSE-SU-2015:0392-1
SUSE-SU-2015:1086-1
SUSE-SU-2015:1086-2
SUSE-SU-2015:1086-3
SUSE-SU-2015:1086-4
USN-1806-1
USN-1819-1
USN-2522-1
USN-2522-3
ZDI-13-069

Affected Products

Centos
Hp-Ux
International Components For Unicode (Icu) Layout Engine
Java Platform
Java Se
Openjdk
Red Hat
Suse
Ubuntu