Fluid Attacks Database

Description

It was discovered that the DatagramSocket implementation in OpenJDK failed to perform source address checks for packets received on a connected socket. A remote attacker could use this flaw to have their packets processed as if they were received from the expected source.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rpm rhel6	java-1.7.0-openjdk	<1:1.7.0.71-2.5.3.1.el6	1:1.7.0.71-2.5.3.1.el6
rpm rhel5	java-1.7.0-openjdk	<1:1.7.0.71-2.5.3.1.el5_11	1:1.7.0.71-2.5.3.1.el5_11
rpm rhel7	java-1.7.0-openjdk	<1:1.7.0.71-2.5.3.1.el7_0	1:1.7.0.71-2.5.3.1.el7_0
rpm rhel5	java-1.6.0-openjdk	<1:1.6.0.33-1.13.5.0.el5_11	1:1.6.0.33-1.13.5.0.el5_11
rpm rhel6	java-1.6.0-openjdk	<1:1.6.0.33-1.13.5.0.el6_6	1:1.6.0.33-1.13.5.0.el6_6
rpm rhel7	java-1.6.0-openjdk	<1:1.6.0.33-1.13.5.0.el7_0	1:1.6.0.33-1.13.5.0.el7_0
rpm rhel6	java-1.8.0-openjdk	<0:1.8.0.25-1.b17.el6	0:1.8.0.25-1.b17.el6

Aliases

1. CVE-2014-65122. NVD-2014-65123. OSV-2014-6512