1. CVE-Search
  2. CVE-2013-4002
ID CVE-2013-4002
Summary XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, Java SE Embedded 7u40 and earlier, and possibly other products allows remote attackers to cause a denial of service via vectors related to XML attribute names.
References
Vulnerable Configurations
  • cpe:2.3:a:ibm:java:5.0.12.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.12.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.12.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.12.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.14.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.14.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.11.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.16.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.12.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.12.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.13.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.13.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.16.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.16.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.12.4:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.12.4:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.16.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.16.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.15.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.15.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.12.5:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.12.5:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.11.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:5.0.11.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:5.0.11.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.13.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.13.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.10.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.10.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.10.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.13.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.13.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.11.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.13.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.13.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:6.0.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:6.0.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:7.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:7.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:7.0.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:7.0.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:7.0.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:7.0.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:7.0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:7.0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:7.0.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:7.0.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:7.0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:7.0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:java:7.0.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:java:7.0.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.7.0:update40:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update40:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.7.0:update40:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.7.0:update40:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r27.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r27.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r27.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r27.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r27.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r27.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r27.7.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r27.7.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r27.7.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r27.7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r27.7.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r27.7.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r27.7.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r27.7.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.1.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.2.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.2.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.5.0:update51:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.5.0:update51:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.6.0:update60:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.6.0:update60:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.5.0:update51:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.5.0:update51:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.6.0:update60:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.6.0:update60:*:*:*:*:*:*
  • cpe:2.3:a:ibm:sterling_b2b_integrator:5.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:sterling_b2b_integrator:5.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.8:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:host_on-demand:11.0.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:host_on-demand:11.0.6.1:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.2:*:*:*:*:*:*:*
  • cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
    cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
  • cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
    cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
  • cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*
    cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*
  • cpe:2.3:a:ibm:sterling_b2b_integrator:5.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:sterling_b2b_integrator:5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:sterling_b2b_integrator:5.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:sterling_b2b_integrator:5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:sterling_file_gateway:2.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:sterling_file_gateway:2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:sterling_file_gateway:2.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:sterling_file_gateway:2.2:*:*:*:*:*:*:*
  • cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
    cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
  • cpe:2.3:o:ibm:i:-:*:*:*:*:*:*:*
    cpe:2.3:o:ibm:i:-:*:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
    cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:vmware:*:*
    cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:vmware:*:*
  • cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
    cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:vmware:*:*
    cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:vmware:*:*
  • cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:-:*:*
    cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:-:*:*
  • cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:-:*:*
    cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:-:*:*
  • cpe:2.3:o:suse:linux_enterprise_sdk:11:sp3:*:*:*:*:*:*
    cpe:2.3:o:suse:linux_enterprise_sdk:11:sp3:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:ltss:*:*:*
    cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:ltss:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:-:*:*:*
    cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:-:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_java:10:sp4:*:*:*:*:*:*
    cpe:2.3:o:suse:linux_enterprise_java:10:sp4:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_java:11:sp2:*:*:*:*:*:*
    cpe:2.3:o:suse:linux_enterprise_java:11:sp2:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_java:11:sp3:*:*:*:*:*:*
    cpe:2.3:o:suse:linux_enterprise_java:11:sp3:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_sdk:11:sp2:*:*:*:*:*:*
    cpe:2.3:o:suse:linux_enterprise_sdk:11:sp2:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*
    cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
  • cpe:2.3:a:apache:xerces2_java:2.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:xerces2_java:2.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:xerces2_java:2.10.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:xerces2_java:2.10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:xerces2_java:2.11.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:xerces2_java:2.11.0:*:*:*:*:*:*:*
CVSS
Base: 7.1 (as of 13-05-2022 - 14:57)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:C
redhat via4
advisories
  • bugzilla
    id 1019176
    title CVE-2013-4002 Xerces-J2 OpenJDK: XML parsing Denial of Service (JAXP, 8017298)
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 6 is installed
        oval oval:com.redhat.rhba:tst:20111656003
      • OR
        • AND
          • comment xerces-j2 is earlier than 0:2.7.1-12.7.el6_5
            oval oval:com.redhat.rhsa:tst:20141319001
          • comment xerces-j2 is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858002
        • AND
          • comment xerces-j2-demo is earlier than 0:2.7.1-12.7.el6_5
            oval oval:com.redhat.rhsa:tst:20141319003
          • comment xerces-j2-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858004
        • AND
          • comment xerces-j2-javadoc-apis is earlier than 0:2.7.1-12.7.el6_5
            oval oval:com.redhat.rhsa:tst:20141319005
          • comment xerces-j2-javadoc-apis is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858006
        • AND
          • comment xerces-j2-javadoc-impl is earlier than 0:2.7.1-12.7.el6_5
            oval oval:com.redhat.rhsa:tst:20141319007
          • comment xerces-j2-javadoc-impl is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858008
        • AND
          • comment xerces-j2-javadoc-other is earlier than 0:2.7.1-12.7.el6_5
            oval oval:com.redhat.rhsa:tst:20141319009
          • comment xerces-j2-javadoc-other is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858010
        • AND
          • comment xerces-j2-javadoc-xni is earlier than 0:2.7.1-12.7.el6_5
            oval oval:com.redhat.rhsa:tst:20141319011
          • comment xerces-j2-javadoc-xni is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858012
        • AND
          • comment xerces-j2-scripts is earlier than 0:2.7.1-12.7.el6_5
            oval oval:com.redhat.rhsa:tst:20141319013
          • comment xerces-j2-scripts is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858014
    • AND
      • comment Red Hat Enterprise Linux 7 is installed
        oval oval:com.redhat.rhba:tst:20150364027
      • OR
        • AND
          • comment xerces-j2 is earlier than 0:2.11.0-17.el7_0
            oval oval:com.redhat.rhsa:tst:20141319016
          • comment xerces-j2 is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858002
        • AND
          • comment xerces-j2-demo is earlier than 0:2.11.0-17.el7_0
            oval oval:com.redhat.rhsa:tst:20141319017
          • comment xerces-j2-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110858004
        • AND
          • comment xerces-j2-javadoc is earlier than 0:2.11.0-17.el7_0
            oval oval:com.redhat.rhsa:tst:20141319018
          • comment xerces-j2-javadoc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20141319019
    rhsa
    id RHSA-2014:1319
    released 2014-09-29
    severity Moderate
    title RHSA-2014:1319: xerces-j2 security update (Moderate)
  • rhsa
    id RHSA-2013:1059
  • rhsa
    id RHSA-2013:1060
  • rhsa
    id RHSA-2013:1081
  • rhsa
    id RHSA-2013:1440
  • rhsa
    id RHSA-2013:1447
  • rhsa
    id RHSA-2013:1451
  • rhsa
    id RHSA-2013:1505
  • rhsa
    id RHSA-2014:0414
  • rhsa
    id RHSA-2014:1818
  • rhsa
    id RHSA-2014:1821
  • rhsa
    id RHSA-2014:1822
  • rhsa
    id RHSA-2014:1823
  • rhsa
    id RHSA-2015:0675
  • rhsa
    id RHSA-2015:0720
  • rhsa
    id RHSA-2015:0765
  • rhsa
    id RHSA-2015:0773
rpms
  • java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9
  • java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el6_4
  • java-1.6.0-ibm-accessibility-1:1.6.0.14.0-1jpp.1.el5_9
  • java-1.6.0-ibm-demo-1:1.6.0.14.0-1jpp.1.el5_9
  • java-1.6.0-ibm-demo-1:1.6.0.14.0-1jpp.1.el6_4
  • java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el5_9
  • java-1.6.0-ibm-devel-1:1.6.0.14.0-1jpp.1.el6_4
  • java-1.6.0-ibm-javacomm-1:1.6.0.14.0-1jpp.1.el5_9
  • java-1.6.0-ibm-javacomm-1:1.6.0.14.0-1jpp.1.el6_4
  • java-1.6.0-ibm-jdbc-1:1.6.0.14.0-1jpp.1.el5_9
  • java-1.6.0-ibm-jdbc-1:1.6.0.14.0-1jpp.1.el6_4
  • java-1.6.0-ibm-plugin-1:1.6.0.14.0-1jpp.1.el5_9
  • java-1.6.0-ibm-plugin-1:1.6.0.14.0-1jpp.1.el6_4
  • java-1.6.0-ibm-src-1:1.6.0.14.0-1jpp.1.el5_9
  • java-1.6.0-ibm-src-1:1.6.0.14.0-1jpp.1.el6_4
  • java-1.7.0-ibm-1:1.7.0.5.0-1jpp.2.el5_9
  • java-1.7.0-ibm-1:1.7.0.5.0-1jpp.2.el6_4
  • java-1.7.0-ibm-demo-1:1.7.0.5.0-1jpp.2.el5_9
  • java-1.7.0-ibm-demo-1:1.7.0.5.0-1jpp.2.el6_4
  • java-1.7.0-ibm-devel-1:1.7.0.5.0-1jpp.2.el5_9
  • java-1.7.0-ibm-devel-1:1.7.0.5.0-1jpp.2.el6_4
  • java-1.7.0-ibm-jdbc-1:1.7.0.5.0-1jpp.2.el5_9
  • java-1.7.0-ibm-jdbc-1:1.7.0.5.0-1jpp.2.el6_4
  • java-1.7.0-ibm-plugin-1:1.7.0.5.0-1jpp.2.el5_9
  • java-1.7.0-ibm-plugin-1:1.7.0.5.0-1jpp.2.el6_4
  • java-1.7.0-ibm-src-1:1.7.0.5.0-1jpp.2.el5_9
  • java-1.7.0-ibm-src-1:1.7.0.5.0-1jpp.2.el6_4
  • java-1.5.0-ibm-1:1.5.0.16.3-1jpp.1.el5_9
  • java-1.5.0-ibm-1:1.5.0.16.3-1jpp.1.el6_4
  • java-1.5.0-ibm-accessibility-1:1.5.0.16.3-1jpp.1.el5_9
  • java-1.5.0-ibm-demo-1:1.5.0.16.3-1jpp.1.el5_9
  • java-1.5.0-ibm-demo-1:1.5.0.16.3-1jpp.1.el6_4
  • java-1.5.0-ibm-devel-1:1.5.0.16.3-1jpp.1.el5_9
  • java-1.5.0-ibm-devel-1:1.5.0.16.3-1jpp.1.el6_4
  • java-1.5.0-ibm-javacomm-1:1.5.0.16.3-1jpp.1.el5_9
  • java-1.5.0-ibm-javacomm-1:1.5.0.16.3-1jpp.1.el6_4
  • java-1.5.0-ibm-jdbc-1:1.5.0.16.3-1jpp.1.el5_9
  • java-1.5.0-ibm-jdbc-1:1.5.0.16.3-1jpp.1.el6_4
  • java-1.5.0-ibm-plugin-1:1.5.0.16.3-1jpp.1.el5_9
  • java-1.5.0-ibm-plugin-1:1.5.0.16.3-1jpp.1.el6_4
  • java-1.5.0-ibm-src-1:1.5.0.16.3-1jpp.1.el5_9
  • java-1.5.0-ibm-src-1:1.5.0.16.3-1jpp.1.el6_4
  • java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10
  • java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4
  • java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10
  • java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4
  • java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10
  • java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4
  • java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10
  • java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4
  • java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10
  • java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4
  • java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10
  • java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4
  • java-1.7.0-openjdk-1:1.7.0.45-2.4.3.1.el5_10
  • java-1.7.0-openjdk-debuginfo-1:1.7.0.45-2.4.3.1.el5_10
  • java-1.7.0-openjdk-demo-1:1.7.0.45-2.4.3.1.el5_10
  • java-1.7.0-openjdk-devel-1:1.7.0.45-2.4.3.1.el5_10
  • java-1.7.0-openjdk-javadoc-1:1.7.0.45-2.4.3.1.el5_10
  • java-1.7.0-openjdk-src-1:1.7.0.45-2.4.3.1.el5_10
  • java-1.7.0-openjdk-1:1.7.0.45-2.4.3.2.el6_4
  • java-1.7.0-openjdk-debuginfo-1:1.7.0.45-2.4.3.2.el6_4
  • java-1.7.0-openjdk-demo-1:1.7.0.45-2.4.3.2.el6_4
  • java-1.7.0-openjdk-devel-1:1.7.0.45-2.4.3.2.el6_4
  • java-1.7.0-openjdk-javadoc-1:1.7.0.45-2.4.3.2.el6_4
  • java-1.7.0-openjdk-src-1:1.7.0.45-2.4.3.2.el6_4
  • java-1.6.0-openjdk-1:1.6.0.0-1.42.1.11.14.el5_10
  • java-1.6.0-openjdk-1:1.6.0.0-1.65.1.11.14.el6_4
  • java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.42.1.11.14.el5_10
  • java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.65.1.11.14.el6_4
  • java-1.6.0-openjdk-demo-1:1.6.0.0-1.42.1.11.14.el5_10
  • java-1.6.0-openjdk-demo-1:1.6.0.0-1.65.1.11.14.el6_4
  • java-1.6.0-openjdk-devel-1:1.6.0.0-1.42.1.11.14.el5_10
  • java-1.6.0-openjdk-devel-1:1.6.0.0-1.65.1.11.14.el6_4
  • java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.42.1.11.14.el5_10
  • java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.65.1.11.14.el6_4
  • java-1.6.0-openjdk-src-1:1.6.0.0-1.42.1.11.14.el5_10
  • java-1.6.0-openjdk-src-1:1.6.0.0-1.65.1.11.14.el6_4
  • java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5
  • java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10
  • java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5
  • java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10
  • java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5
  • java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10
  • java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5
  • java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10
  • java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5
  • java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10
  • java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5
  • java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10
  • xerces-j2-0:2.11.0-17.el7_0
  • xerces-j2-0:2.7.1-12.7.el6_5
  • xerces-j2-debuginfo-0:2.7.1-12.7.el6_5
  • xerces-j2-demo-0:2.11.0-17.el7_0
  • xerces-j2-demo-0:2.7.1-12.7.el6_5
  • xerces-j2-javadoc-0:2.11.0-17.el7_0
  • xerces-j2-javadoc-apis-0:2.7.1-12.7.el6_5
  • xerces-j2-javadoc-impl-0:2.7.1-12.7.el6_5
  • xerces-j2-javadoc-other-0:2.7.1-12.7.el6_5
  • xerces-j2-javadoc-xni-0:2.7.1-12.7.el6_5
  • xerces-j2-scripts-0:2.7.1-12.7.el6_5
  • apache-cxf-0:2.7.12-1.SP1_redhat_1.1.ep6.el6
  • apache-cxf-xjc-utils-0:2.6.2-3.redhat_1.1.ep6.el6
  • cxf-xjc-boolean-0:2.6.2-3.redhat_1.1.ep6.el6
  • cxf-xjc-dv-0:2.6.2-3.redhat_1.1.ep6.el6
  • cxf-xjc-ts-0:2.6.2-3.redhat_1.1.ep6.el6
  • hibernate4-core-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el6
  • hibernate4-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el6
  • hibernate4-entitymanager-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el6
  • hibernate4-envers-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el6
  • hibernate4-infinispan-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el6
  • ironjacamar-common-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-common-impl-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-common-spi-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-core-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-core-impl-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-deployers-common-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-jdbc-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-spec-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • ironjacamar-validator-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el6
  • javassist-eap6-0:3.18.1-5.GA_redhat_1.1.ep6.el6
  • jboss-as-appclient-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-cli-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-client-all-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-clustering-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-cmp-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-configadmin-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-connector-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-console-0:2.2.11-1.Final_redhat_1.1.ep6.el6
  • jboss-as-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-controller-client-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-core-security-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-deployment-repository-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-deployment-scanner-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-domain-http-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-domain-management-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-ee-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-ee-deployment-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-ejb3-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-embedded-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-host-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-jacorb-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-jaxr-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-jaxrs-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-jdr-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-jmx-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-jpa-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-jsf-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-jsr77-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-logging-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-mail-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-management-client-content-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-messaging-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-modcluster-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-naming-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-network-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-osgi-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-osgi-configadmin-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-osgi-service-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-picketlink-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-platform-mbean-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-pojo-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-process-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-protocol-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-remoting-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-sar-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-security-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-server-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-system-jmx-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-threads-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-transactions-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-version-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-web-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-webservices-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-weld-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-as-xts-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jboss-hal-0:2.2.11-1.Final_redhat_1.1.ep6.el6
  • jboss-logmanager-0:1.5.2-2.Final_redhat_2.1.ep6.el6
  • jboss-metadata-0:7.1.2-1.Final_redhat_1.1.ep6.el6
  • jboss-metadata-appclient-0:7.1.2-1.Final_redhat_1.1.ep6.el6
  • jboss-metadata-common-0:7.1.2-1.Final_redhat_1.1.ep6.el6
  • jboss-metadata-ear-0:7.1.2-1.Final_redhat_1.1.ep6.el6
  • jboss-metadata-ejb-0:7.1.2-1.Final_redhat_1.1.ep6.el6
  • jboss-metadata-web-0:7.1.2-1.Final_redhat_1.1.ep6.el6
  • jboss-remoting3-jmx-0:1.1.3-1.Final_redhat_2.1.ep6.el6
  • jboss-xnio-base-0:3.0.11-1.GA_redhat_2.1.ep6.el6
  • jbossas-appclient-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jbossas-bundles-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jbossas-core-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jbossas-domain-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jbossas-javadocs-0:7.4.2-2.Final_redhat_2.1.ep6.el6
  • jbossas-modules-eap-0:7.4.2-2.Final_redhat_2.1.ep6.el6
  • jbossas-product-eap-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jbossas-standalone-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jbossas-welcome-content-eap-0:7.4.2-3.Final_redhat_2.1.ep6.el6
  • jbossws-common-0:2.3.1-1.Final_redhat_1.1.ep6.el6
  • jbossws-cxf-0:4.3.1-1.Final_redhat_1.1.ep6.el6
  • netty-0:3.6.10-1.Final_redhat_1.1.ep6.el6
  • picketlink-bindings-0:2.5.3-11.SP12_redhat_1.1.ep6.el6
  • picketlink-federation-0:2.5.3-12.SP12_redhat_1.1.ep6.el6
  • resteasy-0:2.3.8-10.SP3_redhat_2.1.ep6.el6
  • weld-core-0:1.1.25-1.Final_redhat_2.1.ep6.el6
  • wss4j-0:1.6.16-1.redhat_2.1.ep6.el6
  • xerces-j2-eap6-0:2.9.1-17.redhat_6.1.ep6.el6
  • xjc-utils-0:2.6.2-3.redhat_1.1.ep6.el6
  • xml-security-0:1.5.7-2.redhat_1.1.ep6.el6
  • apache-cxf-0:2.7.12-1.SP1_redhat_1.1.ep6.el5
  • apache-cxf-xjc-utils-0:2.6.2-3.redhat_1.1.ep6.el5
  • cxf-xjc-boolean-0:2.6.2-3.redhat_1.1.ep6.el5
  • cxf-xjc-dv-0:2.6.2-3.redhat_1.1.ep6.el5
  • cxf-xjc-ts-0:2.6.2-3.redhat_1.1.ep6.el5
  • hibernate4-core-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el5
  • hibernate4-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el5
  • hibernate4-entitymanager-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el5
  • hibernate4-envers-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el5
  • hibernate4-infinispan-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el5
  • ironjacamar-common-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-common-impl-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-common-spi-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-core-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-core-impl-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-deployers-common-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-jdbc-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-spec-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • ironjacamar-validator-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el5
  • javassist-eap6-0:3.18.1-5.GA_redhat_1.1.ep6.el5
  • jboss-as-appclient-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-cli-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-client-all-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-clustering-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-cmp-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-configadmin-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-connector-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-console-0:2.2.11-1.Final_redhat_1.1.ep6.el5
  • jboss-as-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-controller-client-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-core-security-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-deployment-repository-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-deployment-scanner-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-domain-http-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-domain-management-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-ee-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-ee-deployment-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-ejb3-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-embedded-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-host-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-jacorb-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-jaxr-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-jaxrs-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-jdr-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-jmx-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-jpa-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-jsf-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-jsr77-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-logging-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-mail-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-management-client-content-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-messaging-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-modcluster-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-naming-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-network-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-osgi-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-osgi-configadmin-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-osgi-service-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-picketlink-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-platform-mbean-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-pojo-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-process-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-protocol-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-remoting-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-sar-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-security-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-server-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-system-jmx-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-threads-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-transactions-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-version-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-web-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-webservices-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-weld-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-as-xts-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jboss-hal-0:2.2.11-1.Final_redhat_1.1.ep6.el5
  • jboss-logmanager-0:1.5.2-2.Final_redhat_2.1.ep6.el5
  • jboss-metadata-0:7.1.2-1.Final_redhat_1.1.ep6.el5
  • jboss-metadata-appclient-0:7.1.2-1.Final_redhat_1.1.ep6.el5
  • jboss-metadata-common-0:7.1.2-1.Final_redhat_1.1.ep6.el5
  • jboss-metadata-ear-0:7.1.2-1.Final_redhat_1.1.ep6.el5
  • jboss-metadata-ejb-0:7.1.2-1.Final_redhat_1.1.ep6.el5
  • jboss-metadata-web-0:7.1.2-1.Final_redhat_1.1.ep6.el5
  • jboss-remoting3-jmx-0:1.1.3-1.Final_redhat_2.1.ep6.el5
  • jboss-xnio-base-0:3.0.11-1.GA_redhat_2.1.ep6.el5
  • jbossas-appclient-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jbossas-bundles-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jbossas-core-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jbossas-domain-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jbossas-javadocs-0:7.4.2-2.Final_redhat_2.1.ep6.el5
  • jbossas-modules-eap-0:7.4.2-2.Final_redhat_2.1.ep6.el5
  • jbossas-product-eap-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jbossas-standalone-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jbossas-welcome-content-eap-0:7.4.2-3.Final_redhat_2.1.ep6.el5
  • jbossws-common-0:2.3.1-1.Final_redhat_1.1.ep6.el5
  • jbossws-cxf-0:4.3.1-1.Final_redhat_1.1.ep6.el5
  • netty-0:3.6.10-1.Final_redhat_1.1.ep6.el5
  • picketlink-bindings-0:2.5.3-11.SP12_redhat_1.1.ep6.el5
  • picketlink-federation-0:2.5.3-12.SP12_redhat_1.1.ep6.el5
  • resteasy-0:2.3.8-10.SP3_redhat_2.1.ep6.el5
  • weld-core-0:1.1.25-1.Final_redhat_2.1.ep6.el5
  • wss4j-0:1.6.16-1.redhat_2.1.ep6.el5
  • xerces-j2-eap6-0:2.9.1-17.redhat_6.1.ep6.el5
  • xjc-utils-0:2.6.2-3.redhat_1.1.ep6.el5
  • xml-security-0:1.5.7-2.redhat_1.1.ep6.el5
  • apache-cxf-0:2.7.12-1.SP1_redhat_1.1.ep6.el7
  • apache-cxf-xjc-utils-0:2.6.2-3.redhat_1.1.ep6.el7
  • cxf-xjc-boolean-0:2.6.2-3.redhat_1.1.ep6.el7
  • cxf-xjc-dv-0:2.6.2-3.redhat_1.1.ep6.el7
  • cxf-xjc-ts-0:2.6.2-3.redhat_1.1.ep6.el7
  • hibernate4-core-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el7
  • hibernate4-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el7
  • hibernate4-entitymanager-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el7
  • hibernate4-envers-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el7
  • hibernate4-infinispan-eap6-0:4.2.14-9.SP4_redhat_1.1.ep6.el7
  • ironjacamar-common-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-common-impl-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-common-spi-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-core-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-core-impl-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-deployers-common-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-jdbc-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-spec-api-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • ironjacamar-validator-eap6-0:1.0.28-1.Final_redhat_1.1.ep6.el7
  • javassist-eap6-0:3.18.1-5.GA_redhat_1.1.ep6.el7
  • jboss-as-appclient-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-cli-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-client-all-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-clustering-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-cmp-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-configadmin-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-connector-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-console-0:2.2.11-1.Final_redhat_1.1.ep6.el7
  • jboss-as-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-controller-client-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-core-security-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-deployment-repository-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-deployment-scanner-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-domain-http-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-domain-management-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-ee-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-ee-deployment-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-ejb3-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-embedded-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-host-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-jacorb-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-jaxr-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-jaxrs-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-jdr-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-jmx-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-jpa-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-jsf-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-jsr77-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-logging-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-mail-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-management-client-content-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-messaging-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-modcluster-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-naming-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-network-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-osgi-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-osgi-configadmin-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-osgi-service-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-picketlink-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-platform-mbean-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-pojo-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-process-controller-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-protocol-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-remoting-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-sar-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-security-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-server-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-system-jmx-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-threads-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-transactions-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-version-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-web-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-webservices-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-weld-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-as-xts-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jboss-hal-0:2.2.11-1.Final_redhat_1.1.ep6.el7
  • jboss-logmanager-0:1.5.2-2.Final_redhat_2.1.ep6.el7
  • jboss-metadata-0:7.1.2-1.Final_redhat_1.1.ep6.el7
  • jboss-metadata-appclient-0:7.1.2-1.Final_redhat_1.1.ep6.el7
  • jboss-metadata-common-0:7.1.2-1.Final_redhat_1.1.ep6.el7
  • jboss-metadata-ear-0:7.1.2-1.Final_redhat_1.1.ep6.el7
  • jboss-metadata-ejb-0:7.1.2-1.Final_redhat_1.1.ep6.el7
  • jboss-metadata-web-0:7.1.2-1.Final_redhat_1.1.ep6.el7
  • jboss-remoting3-jmx-0:1.1.3-1.Final_redhat_2.1.ep6.el7
  • jboss-xnio-base-0:3.0.11-1.GA_redhat_2.1.ep6.el7
  • jbossas-appclient-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jbossas-bundles-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jbossas-core-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jbossas-domain-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jbossas-javadocs-0:7.4.2-2.Final_redhat_2.1.ep6.el7
  • jbossas-modules-eap-0:7.4.2-2.Final_redhat_2.1.ep6.el7
  • jbossas-product-eap-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jbossas-standalone-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jbossas-welcome-content-eap-0:7.4.2-3.Final_redhat_2.1.ep6.el7
  • jbossws-common-0:2.3.1-1.Final_redhat_1.1.ep6.el7
  • jbossws-cxf-0:4.3.1-1.Final_redhat_1.1.ep6.el7
  • netty-0:3.6.10-1.Final_redhat_1.1.ep6.el7
  • picketlink-bindings-0:2.5.3-11.SP12_redhat_1.1.ep6.el7
  • picketlink-federation-0:2.5.3-12.SP12_redhat_1.1.ep6.el7
  • resteasy-0:2.3.8-10.SP3_redhat_2.1.ep6.el7
  • weld-core-0:1.1.25-1.Final_redhat_2.1.ep6.el7
  • wss4j-0:1.6.16-1.redhat_2.1.ep6.el7
  • xerces-j2-eap6-0:2.9.1-17.redhat_6.1.ep6.el7
  • xjc-utils-0:2.6.2-3.redhat_1.1.ep6.el7
  • xml-security-0:1.5.7-2.redhat_1.1.ep6.el7
refmap via4
aixapar IC98015
apple APPLE-SA-2013-10-15-1
bid 61310
confirm
gentoo GLSA-201406-32
hp
  • HPSBUX02943
  • HPSBUX02944
misc http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_July_2013
mlist
  • [j-users] 20180503 [ANNOUNCEMENT]: Apache Xerces-J 2.12.0 now available
  • [lucene-solr-user] 20190104 Re: SOLR v7 Security Issues Caused Denial of Use - Sonatype Application Composition Report
  • [lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1
  • [lucene-solr-user] 20200320 Re: CVEs (vulnerabilities) that apply to Solr 8.4.1
secunia 56257
suse
  • SUSE-SU-2013:1255
  • SUSE-SU-2013:1256
  • SUSE-SU-2013:1257
  • SUSE-SU-2013:1263
  • SUSE-SU-2013:1293
  • SUSE-SU-2013:1305
  • SUSE-SU-2013:1666
  • openSUSE-SU-2013:1663
ubuntu
  • USN-2033-1
  • USN-2089-1
xf ibm-java-cve20134002-dos(85260)
Last major update 13-05-2022 - 14:57
Published 23-07-2013 - 11:03
Last modified 13-05-2022 - 14:57
Back to Top