Skip to navigation

CVE Database

CVE-2011-3548

Impact: Critical
Public: 2011-10-18
Bugzilla: 745473: CVE-2011-3548 OpenJDK: mutable static AWTKeyStroke.ctor (AWT, 7019773)
IAVA: 2012-A-0048

Details

The MITRE CVE dictionary describes this issue as:

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability, related to AWT.

Find out more about CVE-2011-3548 from the MITRE CVE dictionary and NIST NVD.

CVSS v2 metrics

Base Score: 6.8
Base Metrics: AV:N/AC:M/Au:N/C:P/I:P/A:P
Access Vector: Network
Access Complexity: Medium
Authentication: None
Confidentiality Impact: Partial
Integrity Impact: Partial
Availability Impact: Partial

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat security errata

Platform Errata Release Date
RHEL 4 AS for SAP (java-1.4.2-ibm-sap) RHSA-2012:0343 February 29, 2012
RHEL 5 Server for SAP (java-1.4.2-ibm-sap) RHSA-2012:0343 February 29, 2012
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.4.2-ibm) RHSA-2012:0006 January 09, 2012
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.5.0-ibm) RHSA-2011:1478 November 24, 2011
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.6.0-ibm) RHSA-2012:0034 January 18, 2012
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.6.0-sun) RHSA-2011:1384 October 19, 2011
Red Hat Enterprise Linux Supplementary version 6 (java-1.5.0-ibm) RHSA-2011:1478 November 24, 2011
Red Hat Enterprise Linux Supplementary version 6 (java-1.6.0-ibm) RHSA-2012:0034 January 18, 2012
Red Hat Enterprise Linux Supplementary version 6 (java-1.6.0-sun) RHSA-2011:1384 October 19, 2011
Red Hat Enterprise Linux version 4 Extras (java-1.4.2-ibm) RHSA-2012:0006 January 09, 2012
Red Hat Enterprise Linux version 4 Extras (java-1.5.0-ibm) RHSA-2011:1478 November 24, 2011
Red Hat Enterprise Linux version 4 Extras (java-1.6.0-ibm) RHSA-2012:0034 January 18, 2012
Red Hat Enterprise Linux version 4 Extras (java-1.6.0-sun) RHSA-2011:1384 October 19, 2011
Red Hat Enterprise Linux version 5 (java-1.6.0-openjdk) RHSA-2011:1380 October 18, 2011
Red Hat Enterprise Linux version 6 (java-1.6.0-openjdk) RHSA-2011:1380 October 18, 2011
Red Hat Satellite 5.4 (RHEL v.5) (java-1.6.0-ibm) RHSA-2013:1455 October 23, 2013
Red Hat Satellite 5.4 (RHEL v.6) (java-1.6.0-ibm) RHSA-2013:1455 October 23, 2013

External References

http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.