{
  "threat_severity" : "Critical",
  "public_date" : "2013-10-15T00:00:00Z",
  "bugzilla" : {
    "description" : "OpenJDK: Vulnerability in Libraries component (Libraries, 7023639)",
    "id" : "1019300",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1019300"
  },
  "cvss" : {
    "cvss_base_score" : "6.8",
    "cvss_scoring_vector" : "AV:N/AC:M/Au:N/C:P/I:P/A:P",
    "status" : "verified"
  },
  "details" : [ "Unspecified vulnerability in Oracle Java SE 7u25 and earlier, and Java SE Embedded 7u25 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "release_date" : "2013-10-21T00:00:00Z",
    "advisory" : "RHSA-2013:1447",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5",
    "package" : "java-1.7.0-openjdk-1:1.7.0.45-2.4.3.1.el5_10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2013-10-22T00:00:00Z",
    "advisory" : "RHSA-2013:1451",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "java-1.7.0-openjdk-1:1.7.0.45-2.4.3.2.el6_4"
  }, {
    "product_name" : "Supplementary for Red Hat Enterprise Linux 5",
    "release_date" : "2013-10-17T00:00:00Z",
    "advisory" : "RHSA-2013:1440",
    "cpe" : "cpe:/a:redhat:rhel_extras:5",
    "package" : "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10"
  }, {
    "product_name" : "Supplementary for Red Hat Enterprise Linux 5",
    "release_date" : "2013-11-07T00:00:00Z",
    "advisory" : "RHSA-2013:1507",
    "cpe" : "cpe:/a:redhat:rhel_extras:5",
    "package" : "java-1.7.0-ibm-1:1.7.0.6.0-1jpp.1.el5_10"
  }, {
    "product_name" : "Supplementary for Red Hat Enterprise Linux 6",
    "release_date" : "2013-10-17T00:00:00Z",
    "advisory" : "RHSA-2013:1440",
    "cpe" : "cpe:/a:redhat:rhel_extras:6",
    "package" : "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4"
  }, {
    "product_name" : "Supplementary for Red Hat Enterprise Linux 6",
    "release_date" : "2013-11-07T00:00:00Z",
    "advisory" : "RHSA-2013:1507",
    "cpe" : "cpe:/a:redhat:rhel_extras:6",
    "package" : "java-1.7.0-ibm-1:1.7.0.6.0-1jpp.1.el6_4"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2013-5838\nhttps://nvd.nist.gov/vuln/detail/CVE-2013-5838\nhttp://seclists.org/fulldisclosure/2013/Oct/116\nhttp://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html\nhttp://www.security-explorations.com/materials/SE-2012-01-ORACLE-13.pdf" ],
  "name" : "CVE-2013-5838",
  "csaw" : false
}