CVE-2011-0870

Publication date 17 June 2011

Last updated 24 July 2024

Ubuntu priority

Unspecified vulnerability in the Schema Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
icedtea-web	11.10 oneiric	Not affected
	11.04 natty	Not affected
	10.10 maverick	Not in release
	10.04 LTS lucid	Not affected
	8.04 LTS hardy	Not in release
openjdk-6	11.10 oneiric	Not affected
	11.04 natty	Fixed 6b22-1.10.2-0ubuntu1~11.04.1
	10.10 maverick	Fixed 6b20-1.9.8-0ubuntu1~10.10.1
	10.04 LTS lucid	Fixed 6b20-1.9.8-0ubuntu1~10.04.1
	8.04 LTS hardy	Fixed 6b27-1.12.3-0ubuntu1~08.04.1
openjdk-6b18	11.10 oneiric	Fixed 6b18-1.8.8-0ubuntu1~11.04.1
	11.04 natty	Fixed 6b18-1.8.8-0ubuntu1~11.04.1
	10.10 maverick	Fixed 6b18-1.8.8-0ubuntu1~10.10.1
	10.04 LTS lucid	Fixed 6b18-1.8.8-0ubuntu1~10.04.1
	8.04 LTS hardy	Not in release
sun-java5	11.10 oneiric	Not in release
	11.04 natty	Not in release
	10.10 maverick	Not in release
	10.04 LTS lucid	Not in release
	8.04 LTS hardy	Ignored
sun-java6	11.10 oneiric	Not in release
	11.04 natty	Fixed 6.26-1natty
	10.10 maverick	Fixed 6.26-1maverick1
	10.04 LTS lucid	Fixed 6.26-1lucid1
	8.04 LTS hardy	Ignored

Notes

mdeslaur

in natty+, NetX and the plugin moved to the icedtea-web package

sbeattie

listed in the changelog as a SAAJ issue (S7016340); however in the code drop from oracle for this issue, there was no patch included but instead a referenced to the fix for CVE-2011-0869, so I'm assuming the related patch (S7013971) covers both CVEs.

CVE-2011-0870

Status

Notes

mdeslaur

sbeattie

References

Related Ubuntu Security Notices (USN)

Other references