Skip to navigation

CVE Database

CVE-2011-3552

Impact: Low
Public: 2011-10-18
Bugzilla: 745397: CVE-2011-3552 OpenJDK: excessive default UDP socket limit under SecurityManager (Networking, 7032417)
IAVA: 2012-A-0048

Details

The MITRE CVE dictionary describes this issue as:

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, and 1.4.2_33 and earlier allows remote attackers to affect integrity via unknown vectors related to Networking.

Find out more about CVE-2011-3552 from the MITRE CVE dictionary and NIST NVD.

CVSS v2 metrics

Base Score: 2.6
Base Metrics: AV:N/AC:H/Au:N/C:N/I:P/A:N
Access Vector: Network
Access Complexity: High
Authentication: None
Confidentiality Impact: None
Integrity Impact: Partial
Availability Impact: None

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat security errata

Platform Errata Release Date
RHEL 4 AS for SAP (java-1.4.2-ibm-sap) RHSA-2012:0343 February 29, 2012
RHEL 5 Server for SAP (java-1.4.2-ibm-sap) RHSA-2012:0343 February 29, 2012
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.4.2-ibm) RHSA-2012:0006 January 09, 2012
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.5.0-ibm) RHSA-2011:1478 November 24, 2011
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.6.0-ibm) RHSA-2012:0034 January 18, 2012
Red Hat Enterprise Linux Server Supplementary (v. 5) (java-1.6.0-sun) RHSA-2011:1384 October 19, 2011
Red Hat Enterprise Linux Supplementary version 6 (java-1.5.0-ibm) RHSA-2011:1478 November 24, 2011
Red Hat Enterprise Linux Supplementary version 6 (java-1.6.0-ibm) RHSA-2012:0034 January 18, 2012
Red Hat Enterprise Linux Supplementary version 6 (java-1.6.0-sun) RHSA-2011:1384 October 19, 2011
Red Hat Enterprise Linux version 4 Extras (java-1.4.2-ibm) RHSA-2012:0006 January 09, 2012
Red Hat Enterprise Linux version 4 Extras (java-1.5.0-ibm) RHSA-2011:1478 November 24, 2011
Red Hat Enterprise Linux version 4 Extras (java-1.6.0-ibm) RHSA-2012:0034 January 18, 2012
Red Hat Enterprise Linux version 4 Extras (java-1.6.0-sun) RHSA-2011:1384 October 19, 2011
Red Hat Enterprise Linux version 5 (java-1.6.0-openjdk) RHSA-2011:1380 October 18, 2011
Red Hat Enterprise Linux version 6 (java-1.6.0-openjdk) RHSA-2011:1380 October 18, 2011
Red Hat Satellite 5.4 (RHEL v.5) (java-1.6.0-ibm) RHSA-2013:1455 October 23, 2013
Red Hat Satellite 5.4 (RHEL v.6) (java-1.6.0-ibm) RHSA-2013:1455 October 23, 2013

External References

http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.