My Oracle Support Banner

How to address CVE-2013-1493 for Enterprise Performance Management (EPM) 11.1.2.3.500 and 11.1.2.4 (Doc ID 2390603.1)

Last updated on MAY 18, 2022

Applies to:

Hyperion Essbase - Version 11.1.2.3.500 and later
Information in this document applies to any platform.

Goal

Enterprise Performance Management 11.1.2.3.500 and 11.1.2.4 is bundled with JDK 1.6 update 35 and JRockit 1.6 update 37. It has the below vulnerability:

Oracle Java SE JVM 2D Subcomponent Remote Code Execution Vulnerability (Oracle Security Alert for CVE-2013-1493)
The CVE-2013-1493 vulnerability has been addressed Java 1.6 update 43 and above. (Patch Availability Document for Oracle Security Alert for CVE-2013-1493 (Doc ID 1533559.1))
The latest advisory states the Java 1.6 update 181 can be applied (Critical Patch Update Jan 2018 Patch Availability Document for Oracle Java SE (Doc ID 2337155.1))

 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.