CVE-2015-0407
Public on 2015-01-21
Modified on 2015-02-11
Description
An information leak flaw was found in the Swing component in OpenJDK. An untrusted Java application or applet could use this flaw to bypass certain Java sandbox restrictions.
Severity
Medium
CVSS v3 Base Score
See breakdown
Affected Packages
| Platform | Package | Release Date | Advisory | Status |
|---|---|---|---|---|
| HAQM Linux 1 | java-1.6.0-openjdk | 2015-02-11 | ALAS-2015-480 | Fixed |
| HAQM Linux 1 | java-1.7.0-openjdk | 2015-01-22 | ALAS-2015-471 | Fixed |
| HAQM Linux 1 | java-1.8.0-openjdk | 2015-01-22 | ALAS-2015-472 | Fixed |
CVSS Scores
| Score Type | Score | Vector | |
|---|---|---|---|
| HAQM Linux | CVSSv2 | 4.3 | AV:N/AC:M/Au:N/C:P/I:N/A:N |
| NVD | CVSSv2 | 5.0 | AV:N/AC:L/Au:N/C:P/I:N/A:N |