You are here
Oracle Critical Patch Update Advisory - July 2014 - Java, Solaris
Submitted on 16. July 2014 - 9:53 by rischi.
Last update on 16. July 2014 - 17:39.
Last update on 16. July 2014 - 17:39.
IDs:
CVE-2014-4225, CVE-2014-4215, CVE-2014-4224, CVE-2014-4239, CVE-2014-4264, CVE-2014-4244, CVE-2014-4263
Keywords:
Oracle CPU, Java, Solaris
Description:
The Oracle Critical Patch Update for July 2014 includes updates for several Oracle products including Solaris and Java.
Airlock is not affected by any of the listened vulnerabilities.
Airlock is not affected by any of the Java vulnerabilities because they affect either only client installations or Java components/classes not used by Airlock.
The four Solaris vulnerabilities can only be exploited by having local access (shell) on Airlock. Airlock is not affected by these vulnerabilities because there are no interactive local users other than root on the system.
Resolution:
No action required for Airlock.
It is strongly recommended to apply the Critical Patch Update for Java to all Java client installations or to disable or even un-install Java from clients.
Component:
Airlock
Airlock Vulnerability Status:
Does not affect Airlock
Back-end Vulnerability Status:
No action required