CVE-2015-2590
openjdk-6 - security update
⚠ KEVEPSS 66.6%
Description
An unspecified vulnerability exists within Oracle Java Runtime Environment that allows an attacker to perform remote code execution.
How to fix CVE-2015-2590
To remediate CVE-2015-2590, upgrade the affected package to a fixed version below.
- Debian/openjdk-6—upgrade to 6b36-1.13.8-1~deb6u1 or later
- Debian/openjdk-6—upgrade to 6b36-1.13.8-1~deb7u1 or later
Is CVE-2015-2590 being exploited?
Yes — CVE-2015-2590 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (2)
- from 0, < 6b36-1.13.8-1~deb6u1
- from 0, < 6b36-1.13.8-1~deb7u1