阿里云漏洞库

Java SE是Java平台标准版的简称（Java Platform, Standard Edition,also known as Java 2 Platform)，用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。

Oracle Java SE 6u65和7u45存在未明漏洞，允许远程攻击者通过部署未知矢量影响系统的机密性、完整性、可用性。不同于CVE-2013-5902, CVE-2014-0410, CVE-2014-0415,CVE-2014-0418和CVE-2014-0424漏洞。

厂商已经发布了补丁升级程序：
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

参考链接
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00012.html
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00024.html
http://marc.info/?l=bugtraq&m=139402697611681&w=2
http://marc.info/?l=bugtraq&m=139402749111889&w=2
http://osvdb.org/102020
http://rhn.redhat.com/errata/RHSA-2014-0030.html
http://rhn.redhat.com/errata/RHSA-2014-0134.html
http://rhn.redhat.com/errata/RHSA-2014-0135.html
http://secunia.com/advisories/56485
http://secunia.com/advisories/56535
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
http://www.securityfocus.com/bid/64758
http://www.securityfocus.com/bid/64931
http://www.securitytracker.com/id/1029608
https://access.redhat.com/errata/RHSA-2014:0414
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n...

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	oracle	jdk	1.6.0	-
	运行在以下环境
	应用	oracle	jre	1.6.0	-
	运行在以下环境
	应用	oracle	jre	1.7.0	-
	运行在以下环境
	系统	centos_7	java	*		Up to (excluding) 1.7.1-ibm-demo-1.7.1.1.0-1jpp.2.el7_0
	运行在以下环境
	系统	redhat_6	java-1.6.0-sun	*		Up to (excluding) 1:1.6.0.75-1jpp.3.el5_10
	运行在以下环境
	系统	redhat_7	java	*		Up to (excluding) 1.7.1-ibm-demo-1.7.1.1.0-1jpp.2.el7_0
	运行在以下环境
	系统	suse_11_SP2	java-1_7_0-ibm-alsa	*		Up to (excluding) 1.6.0_sr15.0-0.5.1
	运行在以下环境
	系统	suse_11_SP3	java-1_7_0-ibm-plugin	*		Up to (excluding) 1.6.0_sr16.2-0.3.1
	运行在以下环境
	系统	suse_12	java-1_6_0-ibm	*		Up to (excluding) 1.6.0_sr16.1-5

CWE-ID	漏洞类型
NVD-CWE-noinfo